Discount retailer Dollar Tree, known for its Dollar Tree and Family Dollar stores across the U.S. and Canada, fell victim to a data breach involving its service provider, Zeroed-In Technologies. Approximately 1,977,486 individuals were affected after threat actors targeted Zeroed-In’s systems on August 7 and 8, 2023. The compromised data contained sensitive information such as names, birth dates, and Social Security numbers belonging to both current and former employees of Dollar Tree and Family Dollar. Zeroed-In promptly initiated an investigation into the incident, determining unauthorized access to their systems, although the specific files accessed by the attackers remained unconfirmed.
The compromised data assessment led to a notification process for the affected individuals, offering enrollment in a year-long identity protection and credit monitoring service. Despite Dollar Tree’s assurance that Zeroed-In is a vendor used by multiple companies, other potential victims among Zeroed-In’s clients have not been officially identified. The aftermath of the breach prompted inquiries from law firms exploring the possibility of class-action lawsuits against Zeroed-In. While Family Dollar confirmed the breach and alerted affected parties, further investigations and potential repercussions loom over Zeroed-In Technologies, raising concerns about the broader impact on other businesses linked to the compromised service provider.
Read more:
