Canada Goose Dismisses Recent Data Leak as Old Breach, No Signs of New Compromise
Canada Goose has confirmed that a recently advertised data leak involving over 600,000 customer records stems from a historical breach, with no evidence of a new system compromise. The luxury apparel company acknowledged the publication of an old dataset containing past customer transaction details but stated that its review found no unmasked financial data included.
The leaked records, posted by the cybercriminal group ShinyHunters on February 14, reportedly contain personally identifiable information (PII), partial payment details, and order data such as prices and delivery addresses. A preliminary analysis suggests the affected individuals are primarily based in North America and Europe.
ShinyHunters, which has launched its own data leak site in 2026, has been active in targeting high-profile organizations. Recent victims include Crunchbase, Betterment, SoundCloud, Match Group, Panera Bread, Harvard University, and Mercer Advisors. The group has previously exploited Okta accounts through voice phishing and was linked to attacks on Salesforce and its integrations, resulting in the theft of data from over 200 customers.
Source: https://www.theregister.com/2026/02/16/canada_goose_shinyhunters/
Betterment TPRM report: https://www.rankiteo.com/company/betterment
Match Group TPRM report: https://www.rankiteo.com/company/matchgroup
Mercer Advisors TPRM report: https://www.rankiteo.com/company/mercer-canada
"id": "matbetmer1771266248",
"linkid": "matchgroup, betterment, mercer-canada",
"type": "Breach",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '600,000',
'industry': 'Luxury Apparel',
'location': 'Canada',
'name': 'Canada Goose',
'type': 'Company'}],
'data_breach': {'number_of_records_exposed': '600,000',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Partial payment details',
'Order data (prices, delivery '
'addresses)']},
'date_publicly_disclosed': '2026-02-14',
'description': 'Canada Goose confirmed a recently advertised data leak '
'involving over 600,000 customer records stems from a '
'historical breach, with no evidence of a new system '
'compromise. The leaked records contain personally '
'identifiable information (PII), partial payment details, and '
'order data such as prices and delivery addresses.',
'impact': {'data_compromised': '600,000 customer records',
'identity_theft_risk': 'High',
'payment_information_risk': 'Partial'},
'investigation_status': 'Ongoing',
'references': [{'source': 'Cyber Incident Description'}],
'threat_actor': 'ShinyHunters',
'title': 'Canada Goose Historical Data Leak',
'type': 'Data Breach'}