99 Cents Only, a discount retailer that declared bankruptcy in 2024, experienced a data breach where hackers claimed to have stolen 1.2 terabytes of sensitive and personal data, including passport scans. The data was initially thought to belong to Dollar Tree, but it was later clarified that the data belonged to 99 Cents Only. The breach has significant implications as it involves the leak of personal information of former employees.
TPRM report: https://scoringcyber.rankiteo.com/company/99-cents-only-stores
"id": "99-526080125",
"linkid": "99-cents-only-stores",
"type": "Ransomware",
"date": "8/2025",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Retail',
'name': '99 Cents Only',
'size': '371 stores',
'type': 'Retailer'}],
'attack_vector': 'Ransomware',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Passport scans']},
'description': 'INC Ransom recently added Dollar Tree to its data leak site, '
'claiming to have stolen 1.2 terabytes of sensitive and '
'personal data from Dollar Tree. However, Dollar Tree '
'clarified that the data actually belongs to 99 Cents Only, a '
'discount retailer that declared bankruptcy in 2024.',
'impact': {'data_compromised': ['Passport scans']},
'motivation': 'Financial (Ransom)',
'ransomware': {'data_exfiltration': True,
'ransom_demanded': True,
'ransomware_strain': 'INC Ransom'},
'references': [{'source': 'The Record'}],
'threat_actor': 'INC Ransom',
'title': 'INC Ransom Data Breach of 99 Cents Only',
'type': 'Data Breach'}