Billabong suffers customer data breach

Hackers publish 21,485 clear text passwords.

Hackers have stolen and published 21,485 clear text passwords from a Billabong customer database in what the Aussie surfwear icon has described as an "extremely serious matter".

The clear-text passwords were uploaded to a codepaste site for #WikiBoatWednesday, an event popular in hacktivist Twitter circles, for which groups publish stolen data caches online.
The hackers also released administrator database tables and other information, including hashed passwords.
Billabong was unaware of the breach until notified by iTnews' sister publicationSC Magazine last week.

A spokesperson noted that the breached customer database contained "personal information of certain customers of the website, but no financial data".

"We view this attack as an extremely serious matter and have taken urgent action to contain the incident and prevent further attacks occurring," Billabong stated.


"We are continuing to gather information about the incident and to establish the extent and nature of the data that may have been accessed.


"We will take further appropriate measures as new information comes to light".