A threat actor has claimed the Giant Tiger data breach, which has supposedly exposed 2.8 million records.
In March 2024, the major Canadian discount store chain Giant Tiger reported that one of its vendors had been hacked, exposing the personal details of the chain’s customers.
Now, a hacker via a popular data leak forum has allegedly “uploaded the Giant Tiger database” for users of the platform to download.
The database is said to contain swathes of Giant Tiger customer data uploaded to the forum on Friday, April 12th, 2024.
The compromised data supposedly includes:
- Email addresses
- Names
- Phone numbers
- Physical addresses
- Website activity
The attacker’s post reads, “Today, I have uploaded the Giant Tiger Database for you to download. Thanks for reading, and enjoy!”
The post continues by stating that “In March 2024, the Canadian discount store chain Giant Tiger Stores Limited suffered a data breach that exposed over 2.8 million clients.”
The database has supposedly been uploaded in full to the hacking forum, yet users seemed skeptical, asking the user who uploaded the data to send a sample.
A sample was then uploaded, which shows data containing customers' first and last names, emails, country names, and website activity.
Cybernews has yet to verify the legitimacy of this dataset, but we have contacted Giant Tiger for further clarification.
The security incident occurred on March 4th, 2024, and Giant Tiger noted that it only impacted one of its vendors and did not affect the chain’s store systems or applications, saying that “there is no indication of any misuse of the information.”
Giant Tiger operates over 270 stores across Canada, employing 10,000 staff.
Your email address will not be published. Required fields are markedmarked