Toys “R” Us Canada experienced a data breach where threat actors leaked customer records they had previously stolen. The company has taken steps to enhance security and notify authorities, warning customers to watch out for phishing scams. #DarkWebLeak #CustomerData #Cybersecurity#DataBreach #ThreatActor
Keypoints
- The breach was discovered on July 30, 2025, after a dark web posting claimed customer data was stolen.
- Confirmed data leak included personal information such as names, addresses, emails, and phone numbers, but not passwords or credit card details.
- Toys “R” Us immediately engaged cybersecurity experts for containment and investigation measures.
- The company is notifying privacy regulators and advising customers to beware of phishing attempts.
- Security systems have been upgraded following the incident to prevent future breaches.