The California Office of the Attorney General reported on March 27, 2018, that Manduka experienced a data breach involving unauthorized access to payment card information due to malware on their e-commerce web platform. The breach affected customers who made purchases between February 22, 2017, and March 5, 2018, but the exact number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-134813
TPRM report: https://www.rankiteo.com/company/manduka
"id": "man545080425",
"linkid": "manduka",
"type": "Breach",
"date": "2/2017",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'E-commerce',
'name': 'Manduka',
'type': 'Company'}],
'attack_vector': 'Malware',
'data_breach': {'number_of_records_exposed': 'Unknown',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Payment card information'},
'date_detected': '2018-03-27',
'date_publicly_disclosed': '2018-03-27',
'description': 'Unauthorized access to payment card information due to '
'malware on the e-commerce web platform.',
'impact': {'data_compromised': 'Payment card information',
'payment_information_risk': 'High',
'systems_affected': 'E-commerce web platform'},
'references': [{'date_accessed': '2018-03-27',
'source': 'California Office of the Attorney General'}],
'title': 'Manduka Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'E-commerce web platform'}