ManoMano Data Breach Exposes 38 Million Customers

French online marketplace ManoMano just dropped some ugly news on its customer base. The DIY-focused e-commerce platform is alerting users that a data breach has exposed information tied to 38 million customers.

The culprit? A compromised third-party subcontractor. Hackers targeted the external service provider rather than ManoMano's own systems directly — a depressingly common attack vector that continues to plague companies who outsource parts of their tech stack.

ManoMano has begun notifying affected customers, though specifics on exactly what data was swiped remain thin. The 38 million figure is staggering for a marketplace primarily focused on home improvement and gardening supplies across European markets.

Yet another reminder that your security is only as strong as your weakest vendor. Third-party breaches keep racking up enormous victim counts, and companies still aren't locking down their supply chains.