Dollar Tree hit by third-party data breach impacting 2 million people

Trending 2 months ago

Dollar Tree

Discount abundance alternation Dollar Tree was impacted by a third-party abstracts aperture affecting 1,977,486 bodies afterwards the drudge of account provider Zeroed-In Technologies.

Dollar Tree is a abatement retail aggregation that operates the Dollar Tree and Family Dollar food in 23,000 locations in the United States and Canada. 

According to a abstracts aperture notification aggregate with the Maine Attorney General, Dollar Tree's account provider, Zeroed-In, suffered a aegis adventure amid August 7 and 8, 2023.

As allotment of this cyberattack, the blackmail actors managed to abduct abstracts absolute the claimed advice of Dollar Tree and Family Dollar employees.

"While the analysis was able to actuate that these systems were accessed, it was not able to affirm all of the specific files that were accessed or taken by the crooked actor," reads the letter beatific to afflicted individuals.

"Therefore, Zeroed-In conducted a analysis of the capacity of the systems to actuate what advice was present at the time of the adventure and to whom the advice relates."

The advice baseborn during the advance includes names, dates of birth, and Social Security numbers (SSNs).

Zeroed-In has notified the afflicted individuals and amid instructions on enrolling in a twelve-month character aegis and acclaim ecology service.

BleepingComputer contacted Dollar Tree for a animadversion on the abstracts breach, and we accustomed the afterward statement:

“Zeroed-In is a bell-ringer that we and added companies use. They abreast us that they articular a aegis incident, and they provided apprehension of the adventure to accepted and above employees.” – Family Dollar spokesperson.

Other Zeroed-In barter afar from Dollar Tree and Family Dollar may accept additionally been impacted by the aegis breach, but this hasn't been accepted yet.

We've contacted Zeroed-In with agnate queries but accustomed no acknowledgment by advertisement time.

Meanwhile, the calibration of the abstracts aperture has already triggered investigations from law firms looking into a abeyant class-action accusation adjoin Zeroed-In.