7-Eleven reported an unauthorized third-party intrusion into internal systems on April 8. The company said the attackers accessed certain systems used to store franchisee documents. Personal information submitted during the franchise application process was exposed, including names, addresses, and other identifying details. The company stated it launched an investigation and hired a forensic investigation firm after discovering the intrusion. It offered up to 24 months of identity theft protection and CyberScan monitoring through IDX. 7-Eleven did not disclose the number of affected individuals publicly. A breach-tracking service later estimated about 185,300 people were exposed based on leaked files. The leaked data reportedly included names, email addresses, phone numbers, dates of birth, and physical addresses, with some records containing Social Security numbers. The incident has been linked to the ShinyHunters extortion gang.
"The retailer says an unauthorized third party gained access to its internal systems on April 8, exposing personal information associated with franchise applications. In breach notification letters dated May 1, the company said the attackers accessed "certain 7-Eleven systems used to store franchisee documents." 7-Eleven added that the affected files contained personal details submitted during the franchise application process, such as names, addresses, and other identifying information."
""We take the security of your personal information very seriously and immediately launched an investigation in order to assess the affected documents and bring this to your attention," the company wrote in the notice. The convenience store giant said it hired a forensic investigation firm after discovering the intrusion and is offering up to 24 months of identity theft protection and CyberScan monitoring through IDX."
"While 7-Eleven did not publicly disclose how many individuals were affected, breach-tracking service Have I Been Pwned later analyzed leaked files linked to the incident and estimated that roughly 185,300 people had their data exposed, according to a report from BleepingComputer. The leaked information reportedly includes names, email addresses, phone numbers, dates of birth, and physical addresses. Some reports also noted that Social Security numbers appeared in a subset of records."
"The breach has been linked to the ShinyHunters extortion gang, a group that has repeatedly targeted major companies o"
#data-breach #franchise-applications #identity-theft-protection #shinyhunters #personal-information-exposure
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]