ModaOperandi
December 31, 2020
•[ leak, retail ]
A data broker is selling 368.8 million stolen user records from twenty-six companies on a hacker forum. One of these victims is ModaOperandi.com.
MEO
December 24, 2020
•[ leak, misconfiguration, retail ]
In early 2023, a corpus of data sourced from the New Zealand based face mask company MEO was discovered. Dating back to December 2020, the data contained over 8k customer records including names, addresses, phone numbers and passwords stored as MD5 Wordpress hashes. MEO did not respond to multiple attempts to report the breach.
Brendon GyermekruhKft
December 19, 2020
•[ ransomware, malware, retail ]
Brendon Gyermek., a retailer of baby clothes, reveals to have been hit with a Zeppelin ransomware attack.
Nygard
December 12, 2020
•[ ransomware, malware, retail ]
Nygard, a Canada-based fashion line, is hit with a ransomware attack.
Fax Express
December 11, 2020
•[ hack, retail ]
A hacked database belonging to Fax Express was found advertised on hacker forums.
Subway
December 11, 2020
•[ hack, malware, retail ]
Subway UK that a hacked system used for marketing campaigns was used for distributing phishing emails sent out to customers. The emails distributed Excel documents laden with the latest version of the Trickbot malware.
PickPoint
December 5, 2020
•[ hack, retail ]
Unidentified hackers attacked the checkpoints of PickPoint online order delivery service. As a result, lockers at the checkpoints were unlocked.
Kmart
December 3, 2020
•[ ransomware, malware, retail ]
Kmart has suffered a ransomware attack by the Egregor operators. The Windows domain for Kmart was compromised during the attack.
Intersport
December 2, 2020
•[ ransomware, malware, retail ]
Sporting goods retailer Intersport has been hit with a Conti ransomware attack. The threat actors have dumped more than two dozen files as proof of access.
Rand McNally
November 24, 2020
•[ hack, technology, retail ]
Transportation technology firm Rand McNally was hit by a cyberattack that disrupted certain portions of its computer network.
Headlam Group
November 24, 2020
•[ hack, retail ]
Floor coverings distributor Headlam Group has detected unauthorized access to some of its computer systems.
E-Land
November 22, 2020
•[ ransomware, malware, retail ]
South Korean fashion and retail conglomerate E-Land Group said it has suspended operations at nearly half of its stores in the country due to a ransomware attack.
Lazada
November 21, 2020
•[ leak, retail ]
Online retail operator, Lazada, insisted it was not responsible for leaking any online shoppers' data following a report claiming that about 13 million records from Lazada Thailand were being offered for sale on an underground trading forum.
MercadoLivre
November 18, 2020
•[ financial, malware, retail ]
Researchers from Cybereason Nocturnus discover Chaes a malware targeting the financial information of Brazilian customers of MercadoLivre, the largest Brazilian e-commerce platform.
Cencosud
November 15, 2020
•[ ransomware, malware, retail ]
Chilean retail giant Cencosud is attacked by the Egregor ransomware. It is unclear if data has been stolen, but printers in numerous retail outlets began printing out ransom notes as devices were encrypted.
LIVEauctioneers
November 12, 2020
•[ leak, retail ]
ShinyHunters has put up the LIVEauctioneers.com database up for sale.
Wash Tub
November 12, 2020
•[ financial, retail ]
The Wash Tub is notifying customers of a year-long payment card breach after discovering suspicious activity on cards used at various Wash Tub locations.
Home Chef
November 12, 2020
•[ leak, retail ]
ShinyHunters has put up the Home Chef database up for sale.
eatigo
October 31, 2020
•[ leak, retail ]
Personal data from potentially 2.8 million eatigo accounts in Singapore, Hong Kong, and Thailand were illegally assessed in a data breach.
RedMart
October 30, 2020
•[ leak, retail ]
The personal information of 1.1 million RedMart user accounts was stolen from a customer database and put up for sale on an online forum.
