French retailer Kiabi has confirmed it was the target of a cyberattack that compromised the personal data of 20,000 customers. The attackers employed a technique known as credential stuffing, which exploits users' tendency to reuse passwords across multiple platforms. The breach resulted in the theft of sensitive information, including International Bank Account Numbers (IBANs) of affected customers. Kiabi has begun notifying those impacted by the data leak and is taking steps to enhance its cybersecurity measures in response to the incident.