Hackers have stolen and published 21,485 clear text passwords from a Billabong customer database in what the Aussie surfwear icon has described as an "extremely serious matter".
The clear-text passwords were uploaded to a codepaste site for #WikiBoatWednesday, an event popular in hacktivist Twitter circles, for which groups publish stolen data caches online.
The hackers also released administrator database tables and other information, including hashed passwords.
Billabong was unaware of the breach until notified by iTnews' sister publication SC Magazine last week.
A spokesperson noted that the breached customer database contained "personal information of certain customers of the website, but no financial data".
"We view this attack as an extremely serious matter and have taken urgent action to contain the incident and prevent further attacks occurring," Billabong stated.
"We are continuing to gather information about the incident and to establish the extent and nature of the data that may have been accessed.
"We will take further appropriate measures as new information comes to light".
Copyright © SC Magazine, Australia
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.