38 million people were allegedly impacted by a data breach at ManoMano after hackers compromised a customer service portal, with the incident occurring in January and disclosed on 27 February 2026, according to SecurityWeek. The breach involved a customer service subcontractor and led to the theft of names, email addresses, phone numbers, and related customer service exchanges, and it appears the hackers accessed ManoMano’s Zendesk instance used for support.
A threat actor going by the name of ‘Indra’ claimed the attack on BreachForums, saying they stole roughly 43GB of data, including information tied to 37.8 million ManoMano user accounts, over 900,000 service tickets, and over 13,000 attachments. The data pertains to ManoMano users across France, Germany, Italy, Spain, and the United Kingdom, and the alleged access followed the compromise of a Tunisian customer support service provider. SecurityWeek notes that ManoMano has not yet provided a statement on the attacker’s claims.