Retail & E-Commerce Data Breaches — Customer & Payment Compromises

Retail & E-Commerce Data Breaches (636 indexed)

high · retail · Jan 5, 2026

Falabella (Chile)

450K customer records stolen

View incident → Original disclosure Indexed 4 months, 3 weeks ago

critical · retail · Dec 2, 2025

Amazon (Ring / Alexa)

2.8M smart home device user records exposed via misconfigured internal analytics pipeline

View incident → Original disclosure Indexed 5 months, 3 weeks ago

high · retail · Dec 1, 2025

Cineplex

890K customer records stolen

View incident → Original disclosure Indexed 5 months, 3 weeks ago

high · retail · Dec 1, 2025

Sainsbury's

670K customer records exposed via vendor breach

View incident → Original disclosure Indexed 5 months, 3 weeks ago

high · retail · Nov 22, 2025

Staples Inc.

Customer order data and employee information compromised in November cyberattack

View incident → Original disclosure Indexed 6 months ago

medium · retail · Nov 20, 2025

Eurofiber

10,003 records exposed — Email addresses, Names, Phone numbers

View incident → Original disclosure Indexed 6 months, 1 week ago

medium · retail · Nov 20, 2025

Vultr

187,872 records exposed — Email addresses, Geographic locations, IP addresses, Names

View incident → Original disclosure Indexed 6 months, 1 week ago

critical · retail · Nov 18, 2025

Walmart (eCommerce)

3.5M marketplace seller records exposed via compromised Walmart Connect advertising platform

View incident → Original disclosure Indexed 6 months, 1 week ago

high · retail · Nov 5, 2025

Best Buy (vendor incident)

560K customer records compromised through third-party

View incident → Original disclosure Indexed 6 months, 3 weeks ago

high · retail · Nov 5, 2025

Publix Super Markets

450K customer records compromised

View incident → Original disclosure Indexed 6 months, 3 weeks ago

high · retail · Nov 1, 2025

Legends International

Fan payment and personal data — NFL, MLB, NHL, NBA venues

View incident → Indexed 6 months, 3 weeks ago

critical · retail · Nov 1, 2025

H&M Group

1.2M customer records compromised

View incident → Original disclosure Indexed 6 months, 3 weeks ago

high · retail · Oct 5, 2025

Best Buy Electronics

620K customer records exposed via credential stuffing on My Best Buy rewards program

View incident → Original disclosure Indexed 7 months, 3 weeks ago

high · retail · Oct 4, 2025

Artists&Clients

95,351 records exposed — Email addresses, IP addresses, Passwords, Usernames

View incident → Original disclosure Indexed 7 months, 3 weeks ago

high · retail · Oct 1, 2025

Aritzia

280K customer records exposed via vendor platform

View incident → Original disclosure Indexed 7 months, 3 weeks ago

critical · retail · Oct 1, 2025

Canadian Tire Corporation

38M unique email addresses with names, phone numbers, and partial credit card data

View incident → Original disclosure Indexed 7 months, 3 weeks ago

high · retail · Sep 25, 2025

Cultura

1,462,025 records exposed — Email addresses, Names, Phone numbers, Physical addresses and 1 more

View incident → Original disclosure Indexed 8 months ago

critical · retail · Sep 12, 2025

Home Depot (2025)

1.7M customer records exposed via compromised SaaS vendor managing pro contractor accounts

View incident → Original disclosure Indexed 8 months, 2 weeks ago

high · retail · Sep 10, 2025

Foot Locker

390K customer loyalty program records stolen including purchase history and contact data

View incident → Original disclosure Indexed 8 months, 2 weeks ago

high · retail · Sep 1, 2025

Giglio

1,026,468 records exposed — Email addresses, Names, Phone numbers, Physical addresses

View incident → Original disclosure Indexed 8 months, 3 weeks ago

critical · retail · Sep 1, 2025

Lowe's

1.3M customer records exposed via contractor portal breach

View incident → Original disclosure Indexed 8 months, 3 weeks ago

critical · retail · Sep 1, 2025

Albertsons / Safeway

1.5M pharmacy records exposed

View incident → Original disclosure Indexed 8 months, 3 weeks ago

high · retail · Aug 20, 2025

Kroger Grocery Stores

890K customer records exposed via compromised pharmacy benefits manager integration

View incident → Original disclosure Indexed 9 months, 1 week ago

high · retail · Aug 5, 2025

IKEA (parent Ingka)

670K customer records exposed in supply chain attack

View incident → Original disclosure Indexed 9 months, 3 weeks ago