Public breachBreachXposedOrNot· 1 Apr 2026

Zara

Domain: zara.com

What happened

Zara, a fashion retailer, was targeted by the ShinyHunters group in April 2026 following an alleged compromise linked to the Anodot analytics platform, with data later published exposing 197k unique email addresses alongside support ticket records, product SKUs, order IDs, and market information.

Breach facts

Records exposed: 256,847
Sensitive: No
Industry: Retail
Data exposed: Email addressesGeographic locations

Check my email →← All breaches

This page summarises publicly reported breach metadata for awareness. For account recovery or incident response, use the official guidance from the affected service.

Breach data provided by XposedOrNot.