An online North American marketplace, Poshmark, disclosed a breach by an unauthorized third party that gained access to its servers, stealing information belonging to US users such as usernames, one-way encrypted passwords salted uniquely per user, first and last names, gender information, and city of residence. Additional stolen information included clothing size preferences, user emails, social media profile information, and internal Poshmark account preferences. Poshmark did not disclose when the breach happened; however, no financial data or user addresses was stolen. Their Canadian userbase was not affected. They are notifying all customers by email on a rolling basis and recommending users change their passwords.

Data BreachNJCCIC