The California Office of the Attorney General reported a data breach involving Dollar Shave Club, Inc. on April 4, 2018. The breach occurred on March 21, 2018, and involved unauthorized access to customer accounts using email and password combinations from external sources, potentially exposing names, addresses, and the last four digits of payment card information for affected individuals.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-135044
TPRM report: https://www.rankiteo.com/company/dollar-shave-club
"id": "dol503072925",
"linkid": "dollar-shave-club",
"type": "Breach",
"date": "3/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'E-commerce',
'location': 'California, USA',
'name': 'Dollar Shave Club, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'personally_identifiable_information': ['Names', 'Addresses'],
'type_of_data_compromised': ['Names',
'Addresses',
'Last four digits of payment '
'card information']},
'date_detected': '2018-03-21',
'date_publicly_disclosed': '2018-04-04',
'description': 'Unauthorized access to customer accounts using email and '
'password combinations from external sources, potentially '
'exposing names, addresses, and the last four digits of '
'payment card information.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Last four digits of payment card '
'information']},
'references': [{'date_accessed': '2018-04-04',
'source': 'California Office of the Attorney General'}],
'title': 'Dollar Shave Club Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Weak or Stolen Credentials'}