- FutureSeeker threat actor posts new thread on BreachForums
- They claim to have stolen sensitive data from The North Pole Company
- The gift basket company has not yet responded to the claims.
The North Pole Company, a Canadian gift basket delivery service, reportedly suffered a data breach in which half a million customers lost sensitive personal information.
The claim was made on BreachForums, a popular underground community where cybercriminals come to share tools, resources and experiences, find partners and plan future attacks.
Cybersecurity researchers at Incogni reported that a threat actor using the alias FutureSeeker posted a new thread on BreachForums on January 19, offering a North Pole database to his peers.
Still no answer
“Today I have uploaded the NorthPole database for you to download, thanks for reading and enjoying!” read the thread.
The data compromised in the attack includes email addresses, phone numbers, emails, postal addresses and full names of exactly 520,599 people.
The North Pole Company has yet to make an official statement regarding the alleged violation. We will reach out and will update the article if we receive a response.
The North Pole Company is a Canadian gift basket delivery service specializing in holiday gift baskets featuring gourmet foods, wines and holiday items, with the goal of being the leading provider in Canada and the United States.
FutureSeeker is a relatively unknown name in the cybercriminal community. However, if the claims end up being true, that could change. More than half a million active email addresses, along with full names and phone numbers, are more than enough information for phishing and fraud, leaving users potentially in need of protection against identity theft.
To be safe, if you have used The North Pole Company’s services in recent years, be wary of incoming emails and phone numbers, especially from people claiming to be company representatives.
