Bookstore chain Dymocks has alerted its customers to a potential data breach that may result in the exposure of their personal information on the dark web. The company’s managing director, Mark Newman, revealed in an email to members that they detected the possibility of an unauthorized party accessing customer records.
An investigation was immediately initiated upon detecting the breach, with early findings suggesting discussions related to customer records on the dark web. While the extent of the breach remains uncertain, Dymocks assured customers that passwords and financial information appear to be unaffected. They plan to report the incident to the Office of the Australian Information Commissioner after concluding their investigation.
Dymocks issued apologies to its customers, although the exact number of individuals affected remains unknown. Those potentially impacted were informed that their email addresses, phone numbers, postal addresses, genders, and dates of birth could be part of the breached data.
Membership details were also at risk. Initial indications suggest that passwords and financial information have not been compromised. This potential breach follows a string of high-profile cyberattacks that have exposed the personal information of millions of Australians.
Earlier this year, over 100,000 people participated in a class action against Optus for a cyberattack in April, and health giant Medibank faces legal action over a data breach in May that affected 9.7 million individuals.