// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Etsy and TikTok Shop
Breach Record

Etsy and TikTok Shop

DISCLOSED 2025-06-06 · MISCONFIG · 1,600,000 RECORDS EXPOSED

Cybersecurity researchers discovered over 1.6 million files stored in the cloud without protection. The exposed data belongs to customers of Etsy and TikTok Shop. The cause appears to be a cloud storage misconfiguration.

The record

What we know

Disclosed
2025-06-06
Attack vector
Misconfig
Sector
e-commerce
Records exposed
1,600,000
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The breach involved exposed cloud storage, not endpoint compromise, so a positive-security model on endpoints would not directly prevent this misconfiguration.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other misconfig breaches on file

This page is the permanent ColdRecon entry for the Etsy and TikTok Shop disclosure. It updates if new public reporting emerges. All tracked breaches →

Etsy and TikTok Shop just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →