GSPlatformCo Inc. Suffers Data Breach Affecting Over 537,000 U.S. Individuals
GSPlatformCo Inc., the parent company of the ANKA e-commerce platform and Global Shop Solutions, disclosed a data breach impacting 537,877 individuals in the U.S., including 102 Maine residents. The incident, detected on November 22, 2025, involved unauthorized access to a non-core customer data system containing a seven-month-old snapshot of information from April 2025.
The exposed data included personally identifiable information (PII) such as names, contact details (including email addresses), demographic data, account status, and basic transaction history. However, no financial data, login credentials, authentication tokens, or protected health information (PHI) were compromised. ANKA confirmed that its core database, passwords, and payment card data remained unaffected.
The breach was reported to the Maine Attorney General on January 12, 2026, with consumer notifications sent electronically on January 16, 2026. While the company has not attributed the breach to a specific threat actor, it remains unclear whether this incident is linked to the October 2025 ransomware attack on Global Shop Solutions, which the PLAY ransomware group claimed responsibility for, citing the exfiltration of sensitive corporate and client data.
In response, ANKA launched an investigation, secured its systems, and notified regulatory authorities. The company advised affected users to remain vigilant against phishing and spam, given the exposure of names and email addresses, while reiterating that it would never request passwords or payment details via unsolicited messages. Support for impacted individuals is available via the ANKA Security Team.
Source: https://www.claimdepot.com/data-breach/gsplatformco-2026
Great Southern Bank cybersecurity rating report: https://www.rankiteo.com/company/gsbankau
"id": "GSB1768350855",
"linkid": "gsbankau",
"type": "Breach",
"date": "11/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '537,877',
'industry': 'Retail/E-commerce',
'location': 'United States',
'name': 'GSPlatformCo Inc (ANKA e-commerce platform)',
'type': 'E-commerce Platform'},
{'industry': 'Enterprise Software',
'location': 'United States',
'name': 'Global Shop Solutions',
'type': 'Parent Company'}],
'customer_advisories': 'Electronic notifications sent on 2026-01-16; users '
'reminded that ANKA will never request passwords, '
'payment card details, or verification codes via '
'email, text, or chat',
'data_breach': {'number_of_records_exposed': '537,877',
'personally_identifiable_information': 'Names, email '
'addresses, '
'demographic data, '
'account status, basic '
'transaction history',
'sensitivity_of_data': 'Moderate (names, contact info, '
'demographic data, account status, '
'basic transaction history)',
'type_of_data_compromised': 'Personally Identifiable '
'Information (PII)'},
'date_detected': '2025-11-22',
'date_publicly_disclosed': '2026-01-16',
'description': 'GSPlatformCo Inc, the company behind the ANKA e-commerce '
'platform and its parent company, Global Shop Solutions, '
'experienced a major data breach affecting 537,877 individuals '
'in the United States, including 102 residents of Maine. The '
'breach involved unauthorized access to a non-core customer '
'data system containing a snapshot of data from April 2025.',
'impact': {'data_compromised': 'Personally identifiable information (PII) '
'including names, contact information (email '
'addresses), demographic data, account status, '
'and basic transaction history',
'identity_theft_risk': 'High (due to exposure of PII)',
'payment_information_risk': 'None (no financial data compromised)',
'systems_affected': 'Non-core customer data system'},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': 'Environment hardened '
'against further '
'unauthorized access; '
'confirmation that current '
'systems are secure'},
'recommendations': 'Users advised to use strong, unique passwords; remain '
'vigilant against phishing attempts and spam; treat '
'unexpected messages with caution',
'references': [{'source': 'Maine Attorney General'}],
'regulatory_compliance': {'regulatory_notifications': 'Reported to Maine '
'Attorney General on '
'2026-01-12; other data '
'protection authorities '
'notified as required '
'by law'},
'response': {'communication_strategy': 'Electronic notifications to affected '
'users; guidance on phishing vigilance',
'containment_measures': 'Immediate security investigation and '
'hardening of environment against '
'further unauthorized access',
'incident_response_plan_activated': 'Yes',
'remediation_measures': 'Confirmed current systems are secure; '
'limited compromised data to an older '
'snapshot'},
'stakeholder_advisories': 'Guidance provided to affected users on phishing '
'vigilance and account security',
'title': 'GSPlatformCo Inc and Global Shop Solutions Data Breach',
'type': 'Data Breach'}