Retail & E-Commerce Data Breaches — Customer & Payment Compromises

Retail & E-Commerce Data Breaches (599 indexed)

high · retail · Jun 10, 2024

Jumia Technologies (Pan-Africa)

340K customer records exposed

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · retail · Jun 8, 2024

Neiman Marcus Group

31M customer email addresses exposed via Snowflake credential theft campaign

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · retail · Jun 5, 2024

Advance Auto Parts (Snowflake)

2.3M customer and employee records stolen via Snowflake data warehouse compromise

View incident → Original disclosure Indexed 1 year, 10 months ago

critical · retail · May 23, 2024

Dota2

1,907,205 records exposed — Email addresses, IP addresses, Passwords, Usernames

View incident → Original disclosure Indexed 1 year, 11 months ago

critical · retail · May 20, 2024

Ticketmaster (Live Nation)

560M customer records exposed in Snowflake-linked breach

View incident → Original disclosure Indexed 1 year, 11 months ago

medium · retail · May 18, 2024

Etsy Marketplace

1.1M seller records exposed via misconfigured analytics endpoint — shop revenue data leaked

View incident → Original disclosure Indexed 1 year, 11 months ago

high · retail · May 9, 2024

Christie's Auction House

RansomHub stole client data from world's largest auction house — $6.2B in 2024 sales

View incident → Original disclosure Indexed 1 year, 11 months ago

high · retail · May 1, 2024

Aarons Holdings (Retail)

INC Ransom group compromised lease-to-own retailer systems across 1,300 locations

View incident → Original disclosure Indexed 2 years ago

critical · retail · May 1, 2024

Tokopedia (Indonesia)

1.5M marketplace records compromised

View incident → Original disclosure Indexed 2 years ago

high · retail · May 1, 2024

Chewy Inc

670K customer and pet records stolen

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 28, 2024

London Drugs Ransomware 2024

LockBit ransomware forced closure of 79 stores across Western Canada — employee data stolen

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 28, 2024

London Drugs (Canada)

Ransomware forced closure of all 79 stores for over a week — employee data exposed

View incident → Original disclosure Indexed 2 years ago

critical · retail · Apr 28, 2024

London Drugs (BC)

Ransomware shut down 79 stores for a week across Western Canada

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 22, 2024

T2

94,584 records exposed — Dates of birth, Email addresses, Names, Passwords and 4 more

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 20, 2024

Darden Restaurants (Olive Garden, LongHorn)

780K employee records exposed via compromised HR vendor system — payroll data stolen

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 12, 2024

Giant Tiger

2,842,669 records exposed — Email addresses, Names, Phone numbers, Physical addresses

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 10, 2024

IKEA Eastern Europe

1.5M customer records exposed via compromised regional e-commerce platform — delivery addresses

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 9, 2024

Kaspersky Club

55,971 records exposed — Email addresses, IP addresses, Passwords, Usernames

View incident → Original disclosure Indexed 2 years ago

high · retail · Apr 5, 2024

Shoe Carnival

75K customer payment card records exposed via point-of-sale malware across 400 stores

View incident → Original disclosure Indexed 2 years ago

critical · retail · Apr 2, 2024

SurveyLama

4,426,879 records exposed — Dates of birth, Email addresses, IP addresses, Names and 3 more

View incident → Original disclosure Indexed 2 years, 1 month ago

high · retail · Apr 1, 2024

Roots Canada

340K customer records compromised

View incident → Original disclosure Indexed 2 years, 1 month ago

high · retail · Apr 1, 2024

Pandabuy

1,348,407 records exposed — Email addresses, IP addresses, Names, Phone numbers and 1 more

View incident → Original disclosure Indexed 2 years, 1 month ago

high · retail · Apr 1, 2024

PetSmart

560K customer and pet records stolen via credential stuffing

View incident → Original disclosure Indexed 2 years, 1 month ago

high · retail · Apr 1, 2024

Cencosud (South America)

Major retailer breach affecting millions of customers across Chile, Argentina, Peru

View incident → Original disclosure Indexed 2 years, 1 month ago