Shoe Show, Inc. reported a cybersecurity incident involving a Shoe Show employee e-mail account.
The footwear retailer based in Concord, NC filed a data breach notice detailing the incident with the Attorney General of Maine, Aaron Frey, on October 9. In response, Shoe Show secured the affected e-mail account and launched an investigation with the assistance of outside forensics experts.
On August 15, after a thorough review of the information gathered during the investigation, it was determined that certain individuals’ personal and sensitive information, including e-mails and attachments containing confidential information belonging to certain individuals, may have been exposed and/or acquired between June 28 and July 6. Shoe Show indicated in its report that 12,856 employees may have been affected by the breech.
After learning that sensitive data was accessible to an unauthorized party, Shoe Show said it reviewed the compromised files to determine what information may have been leaked and impacted.
Shoe Show recently completed this process, noting that the breached information varies depending on the individual; however, it did not disclose the leaked data types found in its publicly available data breach letter, which the company sent to anyone affected by the security incident. The letters should contain details of which data belonged to those impacted by the breach and was likely compromised.
As expected, the notice grabbed the attention of a wide range of ambulance chasers looking to find plaintiffs in a lawsuit against the owner of the Shoe Show and Shoe Dept. and Half-Moon Outfitters nameplates.
To read the form breach notification letters that Shoe Show filed with the Attorney General of Maine, Aaron Frey, go here.
Image courtesy Shoe Show