Alleged Data Breach Hits Dutch Contact Lens Supplier LensDeal, More than 100k Customer PII exposed
A notorious hacking forum has surfaced with claims of a major data breach involving LensDeal, a Netherlands-based contact lens supplier. A user identified as “Ponce,” an active participant on the cybercrime forum BreachForums, shared what appears to be a massive trove of customer data - allegedly stolen from LensDeal’s systems.
According to the forum post, the breach includes sensitive data from 115,096 customers, with fields such as first and last names, email addresses, passwords (including last generated password), birthdates, IP addresses, company details, and more.
Samples shared in the post reveal:
- Full names
- Email addresses
- Hashed passwords
- Birthdates
This is a serious privacy threat for the individuals affected. Some records date back several years, while others are as recent as early 2025, suggesting the breach may be both recent and extensive in scope.
LensDeal has not yet publicly commented on the incident, and attempts to verify the breach independently are ongoing. The legitimacy of the data, while unconfirmed at this time, appears credible based on structure and formatting.
Cybersecurity experts warn that leaked information of this nature can be exploited for phishing, identity theft, and account hijacking. Customers who have registered with LensDeal are advised to:
- Change their passwords immediately
- Monitor accounts for suspicious activity
- Be cautious of emails requesting personal or login information
The breach, if confirmed, would add LensDeal to the growing list of European e-commerce platforms targeted by cybercriminals in recent years.