Powered by MOMENTUM MEDIA
cyber daily logo

Powered by MOMENTUMMEDIA

Breaking news and updates daily.

Subscribe to our Newsletter

Powered by MOMENTUM MEDIA
Breaking news and updates daily. Subscribe to our Newsletter
facebook linkedin X Instagram youtube

Explore

SECTIONS

MORE

search button

Exclusive: Threat actor falsely claims leak of 12m JB Hi-Fi records

The threat actor has since been banned from an online forum for selling previously leaked data, with the claimed JB Hi-Fi dataset sample having been leaked previously as part of a Dymocks cyber incident.

user icon Daniel Croft
Thu, 23 Jan 2025 Security
Exclusive: Threat actor falsely claims leak of 12m JB Hi-Fi records
expand image

An unknown threat actor has claimed a cyber attack on Australian home entertainment and technology retailer JB Hi-Fi.

A user by the name of “LordAbe” made the claim on a popular hacking forum, claiming to have 12,369,481 customer records for sale, containing personal data.

You’re out of free articles for this month

While the threat actor did not provide any details as to what the data in question was, a sample was posted containing names, email addresses, mobile numbers, postcodes, states and more.

However, an anonymous cyber professional has told Cyber Daily that the sample dataset leaked by LordAbe is identical to one leaked in the 2023 data leak of book retailer Dymocks.

The 3,000 sample records are an exact match for those leaked in the previous cyber incident.

Furthermore, LordAbe has sold “combolists” in the past and has since been banned from the hacking forum for “selling public leaks”, suggesting that the latest leak was not new data.

Cyber Daily logo
VIEW ALL

For those unaware, a combolist refers to a dataset that has been compiled from previous leaks.

Cyber Daily has reached out to JB Hi-Fi for comment on the incident.

Dymocks became the victim of a data incident in September 2023. It revealed that there had been “unauthorised access” to the systems of one of its third-party partners.

The company confirmed the leak of 1.24 million customer records, saying it has “now confirmed that our customer records are available on the dark web”.

“Although our investigations are ongoing, we do believe that one of our third-party partner’s systems [was] subject to unauthorised access,” Dymocks said in an update to their customer notice on the incident.

“Whilst we continue to keep all avenues open, we are working with the identified partner to focus on understanding if and how their systems were accessed despite their security measures.”

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.
You need to be a member to post comments. Become a member for free today!

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.
CD Logo

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED

Be the first to hear the latest developments in the cyber industry.

momentummedia media
most innovative companies awards

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

CATEGORIES

STAY CONNECTED

Copyright © 2025 MOMENTUMMEDIA