Office
May 29, 2014
•[ leak, retail ]
UK shoe retailer Office sends its customers an email, explaining that it has suffered a serious security breach. Information accessed includes customers' names, addresses, birth date and month (but not year), password and phone number of accounts created prior to August 2013.
Carlson Rezidor Hotel Group
April 11, 2014
•[ hack, retail ]
Hackers steal approximately $35,000 in Club Carlson Gold Points (incentive awards earned from hotel stays and food and beverage purchases) from about 650 customers of the Carlson Rezidor Hotel Group.
Spec's
March 28, 2014
•[ hack, malware, retail ]
About 550,000 customers, as well as employees of Spec's may have had personal information compromised in a malware attack that impacted 34 locations (and dates back to Oct. 31, 2012).
El Agave Restaurant
March 26, 2014
•[ financial, malware, retail ]
Over 200 credit and debit card numbers stolen by hackers who installed malware on the point of sale system of El Agave Restaurant.
Rosenthal Wine Shop
March 21, 2014
•[ financial, malware, retail ]
Rosenthal Wine Shop notifies customers that malware may have compromised their payment card information.
Sears
February 28, 2014
•[ hack, retail ]
Sears Holdings Corp. (SHLD), investigates a possible security breach after the trail of cyberattacks on other retailers (such as Target).
Bulk Reef Supply
February 27, 2014
•[ hack, retail ]
Saltwater aquarium supplies seller Bulk Reef Supply (bulkreefsupply.com) announces that its website was compromised for about six months, and the company is notifying an undisclosed number of customers that their personal data, including credit card information, may have been compromised.
Well
February 18, 2014
•[ financial, retail ]
Well.ca, a Canadian online retailer for health and beauty products, declares to have suffered a data breach, compromising the credit card information of a few thousand of its customers.
Silk Road
February 13, 2014
•[ hack, financial, retail ]
Using a known Bitcoin vulnerability the popular marketplace Silk Road is hacked, losing approximately 4,400 bitcoins, presently worth around $2.6 million.
Michael's
January 25, 2014
•[ financial, retail ]
Multiple sources in the banking industry say they are tracking a pattern of fraud on cards recently used at Michaels Stores Inc., an Irving, Texas-based arts-and-crafts retailer that maintains more than 1,250 stores across the United States.
Neiman Marcus
January 11, 2014
•[ hack, malware, retail ]
Luxury retailer Neiman Marcus admits to have suffered a data breach exposing customers' credit card information.
Home Depot
January 1, 2014
•[ hack, retail ]
hacked
Supervalu
January 1, 2014
•[ hack, retail ]
hacked
JD
January 1, 2013
•[ leak, retail ]
In 2013 (exact date unknown), the Chinese e-commerce service JD suffered a data breach that exposed 13GB of data containing 77 million unique email addresses. The data also included usernames, phone numbers and passwords stored as SHA-1 hashes. The data was provided to HIBP by a source who requested it be attributed to "white_peacock@riseup.net".
Target Corporation
January 1, 2013
•[ hack, retail ]
hacked
Lookbook
August 24, 2012
•[ hack, misconfiguration, retail ]
In August 2012, the fashion site Lookbook suffered a data breach. The data later appeared listed for sale in June 2016 and included 1.1 million usernames, email and IP addresses, birth dates and plain text passwords.
Taobao
January 1, 2012
•[ leak, retail ]
In approximately 2012, it's alleged that the Chinese shopping site known as Taobao suffered a data breach that impacted over 21 million subscribers. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and plain text passwords. Read more about Chinese data breaches in Have I Been Pwned.
