InfoSecBulletin Cybersecurity for mankind
Evaly, a Bangladeshi e-commerce platform, is reportedly facing a major data breach that may have exposed sensitive information of around 783,611 customers and merchants. This incident is said to have occurred today, May 23, 2025.
Evaly’s website currently displays a message stating, “HACKED, I HAVE ALL CUSTOMER DATA. EVALY STAFF PLEASE CONTACT OR ELSE I WILL RELEASE THIS DATA TO THE PUBLIC.”
High-Severity Flaw in HashiCorp Nomad Allows Privilege Escalation
SoftBank: Over 137,000 personal info leaked
Alert
Trend Micro Apex One Flaw Allow Attackers to Inject Malicious Code
Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Action
Adobe Releases Patch Fixing 254 Vulnerabilities With High-Severity Security Gaps
Alert
40,000 + live internet cameras exposed globally !
Microsoft patch Tuesday fix exploited zero-day and 65 vuls patched
84,000+ Roundcube instances vulnerable to actively exploited flaw
CVE-2025-24016
Critical Wazuh RCE Actively Exploited by Mirai Botnets
CISA Issues Seven Advisories for Industrial Control Systems (ICS)
Posts on the clear and dark web claim that compromised data includes names, email addresses, phone numbers, and order details. The alleged thief is selling this stolen information for $500, with samples showing customer orders, shipping addresses, and contact details.
Evaly customers should be alert for suspicious activities like phishing or unauthorized use of their personal information.
Infosecbulletin didn’t receive any replay while publishing the report from the Evaly authority.
