The California Office of the Attorney General reported that Staples, Inc. experienced a data breach involving unauthorized access to payment card data from customers' purchases. The breach was detected on December 19, 2014, and affected purchases made at 115 retail stores from August 10, 2014, through September 16, 2014, potentially compromising cardholder names, payment card numbers, expiration dates, and card verification codes.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-47797
TPRM report: https://www.rankiteo.com/company/staples
"id": "sta607072725",
"linkid": "staples",
"type": "Breach",
"date": "8/2014",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Office Supplies',
'location': 'Multiple Locations',
'name': 'Staples, Inc.',
'type': 'Retail'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['cardholder names',
'payment card numbers',
'expiration dates',
'card verification codes']},
'date_detected': '2014-12-19',
'description': "Unauthorized access to payment card data from customers' "
'purchases at 115 retail stores.',
'impact': {'data_compromised': ['cardholder names',
'payment card numbers',
'expiration dates',
'card verification codes'],
'payment_information_risk': True},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'Staples, Inc. Data Breach',
'type': 'Data Breach'}