Overview

In early 2026, European DIY marketplace ManoMano confirmed a major data breach that potentially exposed information belonging to approximately 38 million customers.

While the company indicated its core infrastructure and payment systems were not directly compromised, attackers gained access through a third-party customer support provider. Because customer support tools can store large volumes of personal data, incidents like this can still have serious downstream impact.

How it happened

Based on public disclosures, the breach did not start inside ManoMano’s primary systems. Instead, attackers compromised a vendor used to handle customer support interactions.

Customer support platforms typically contain information like names, email addresses, phone numbers, order references, and support ticket conversations. If an attacker gains access to that environment, they can collect large amounts of data without needing to break into the retailer’s main network.

This approach has become increasingly common: rather than attacking well-defended “front doors,” threat actors look for “side doors” such as partners or service providers that still have valuable access.

Risks

Even if passwords and payment card data were not exposed, this breach can still create risk for customers. The most common impact is an increase in targeted phishing, where attackers use real details to make scam messages feel legitimate.

Here’s what that can look like in practice:

• Email phishing that references a real order, delivery issue, or past support conversation.
• SMS “smishing” claiming a refund is pending or a package requires “verification.”
• Account takeover attempts that start by targeting your email (because email controls password resets).
• Attachment-driven risks if files shared with customer support contained extra personal info.

In short, large-scale contact data leaks often lead to waves of scams. The more specific the leaked information, the more convincing those scams can become.

Recommendations

If you are a ManoMano customer, there is no need to panic. But it’s worth being extra cautious for the next few weeks.

• Be skeptical of emails or texts that reference your orders or support tickets.
• Don’t click links in unexpected messages. If you need to check something, go directly to the official website.
• Enable multi-factor authentication (MFA) on your email and other important accounts.
• Watch for urgency tactics (refunds, “verify now,” “last chance,” delivery failures). That’s a common scam pattern.
• Report suspicious messages and consider changing passwords if you reused them elsewhere.