01.06.2026 15:50
World-renowned Spanish fashion and retail giant Zara has confirmed a serious data breach affecting millions of its customers. The company stated that a cyberattack targeted a third-party database; while credit card information and passwords remain secure, customers are advised to stay vigilant against potential fraud attempts.
Zara, one of the leading brands in the global ready-to-wear sector, is facing a major crisis regarding customer data security. Through an official notification email sent to users, the company announced that cyber attackers gained unauthorized access to customer data stored for analytical purposes.
SYSTEMS BREACHED ON APRIL 14
According to the official statement, the data breach was first detected on April 14. The company determined that databases containing information about customer relationships and hosted by a third party were infiltrated from outside. It was stated that authorities and the media were quickly informed after the incident was noticed.
WHICH DATA WAS STOLEN?
As a result of Zara's comprehensive analyses, it was reported that the data accessed by cyber attackers was limited to an analytical framework. The leaked data was listed as follows:
- Browsing data from the website and mobile app,
- Purchase records from past periods,
- Internal system identifiers and device IDs,
- Customer service queries and some contact information.
CREDIT CARDS AND PASSWORDS ARE SAFE
Following the breach that caused major panic among customers, a reassuring statement came from Zara's management. The company emphasized that system login passwords, bank and credit card data, or other sensitive personal information related to payment methods were not affected by this attack. It was also highlighted that security protocols were quickly updated, and online shopping platforms continued to operate uninterrupted and securely during this process.
WARNING: "DO NOT CLICK ON SUSPICIOUS LINKS"
While it remains unclear exactly how many customers were affected by the attack, it was noted that cyber scammers might activate due to the leaked contact information. Zara warned its customers against potential traps with the following words:
"We would like to remind you to exercise utmost caution regarding suspicious communications, requests for payment, or unusual and urgent demands for additional personal information. We strongly advise not to click on any links or open attached files from sources that are not completely reliable."