Last week, Magento Marketplace has disclosed that an unauthorised third party has gained access to some of the account information. Magento Marketplace is a repository of extensions and themes for the e-commerce platform. The service was temporarily shut down just after the discovery of the breach on November 21 and is now available again. The breach impacted names, email addresses, MageID, billing and shipping addresses, and phone numbers of both buyers and sellers. Passwords and financial information were not affected.
Nevertheless, Magento Marketplace users are advised to change the password they have been using on this platform, as well as always keep the Magento instances and extensions up-to-date.