Recent Breaches

Recent BreachesCompanies › Zara

Company breach profile

Zara: Breach History & DoxxScan™ Rating

Zara has 4 publicly reported breaches in our tracker. Here is the timeline, what was exposed, and its DoxxScan™ Rating.

53/100
Elevated doxx risk

DoxxScan™ Rating — lower means a higher likelihood that personal data tied to this company is exposed and could be used to dox or target its customers.

powered by GalaxyWarden
Is your data from Zara exposed?
Scan your email against every breach we track — free, 30 seconds.
Check if you’re exposed →

Breach timeline

May 17, 2026HIGHZara Data of 197K Customers Exposed in ShinyHunters Ransomware Attack
ShinyHuntersRansomware
May 8, 2026HIGHZara data breach exposes info of 197K customers
Credential & Infostealer Leaks
May 8, 2026MEDIZara Breach Exposes Data of 197K Customers via Compromised Vendor
ShinyHuntersSupply-Chain Attack
April 15, 2026LOWZara Data Breach (2026)
Misconfiguration & Exposed Data

Data reported exposed

Across these incidents, the data reported as exposed includes: email-addresses, purchase-history, order-ids, support-tickets, purchases, geographic-locations, Email addresses, Geographic locations, Purchases, Support tickets.

Groups involved

ShinyHunters 2

Methods used

Misconfiguration & Exposed Data 2Ransomware 1Credential & Infostealer Leaks 1Supply-Chain Attack 1Data Extortion & Leaks 1

The DoxxScan™ Rating is an automated, informational estimate of how exposed a company’s customers may be, derived solely from publicly reported breach history — the number of incidents, how recent and severe they were, and the sensitivity of the data involved. A lower rating indicates a higher likelihood that personal information tied to this company is circulating and could be used to dox or target individuals. It is not an audit, certification, or assessment of the company’s current security controls, and it does not represent present-day risk. It may rely on incomplete or unverified public reports and can change as new information emerges. Recent Breaches and GalaxyWarden are independent and are not affiliated with, and do not endorse, any company named here. Provided for general awareness only — not legal, financial, or security advice. How the rating is calculated →