PChome Taiwan Hit by Settra Ransomware via Infostealer
Taiwanese e-commerce and payments giant PChome (pchome.com.tw) was claimed by the Settra ransomware group. The incident, estimated from around June 10, involved infostealer activity compromising employee and user credentials. Ransomware.live reported the claim on June 28, noting thousands of affected accounts.
- credentials
- employee-data
- user-data
Taiwanese e-commerce giant PChome suffered a ransomware attack that exposed credentials and personal data belonging to more than 35,000 users and employees. The Settra ransomware group claimed responsibility for the breach, which public reporting indicates began around June 10, 2026, after infostealer malware first compromised employee and customer accounts.
According to reporting on Ransomware.live, the attackers gained initial access through infostealer activity that harvested login details. The incident ultimately led to the theft of employee data, user data, and a large volume of credentials. The claim was publicly posted on June 28, confirming that thousands of accounts were affected. Available reporting describes the breach as involving both internal company records and customer information tied to PChome’s online shopping and payment services.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →