It seems Mr. Tokmanni was caught with his pants down, and now they are trying to explain it away. A Telegram message claims that the data of about 470,000 customers has leaked, including address information, order history, names, emails, etc.
It shouldn’t be possible to access Tokmanni’s server from a single customer’s infected computer, or else Tokmanni’s data security is in a very poor state. And even if access did come from such a machine, Tokmanni’s server was intentionally breached. So, this is clearly a data breach specifically targeting Tokmanni.