CompandSave.com

In October 2020 the online retailer CompandSave experienced a significant data breach when an unauthorized actor gained access to its customer database. The incident resulted in the compromise of sensitive personal and financial details. Security researchers identified that the breach likely stemmed from a vulnerability in the web application or an insecure database configuration. The leaked records were later shared on various underground hacking forums and darknet marketplaces throughout 2021 and 2022. The exposed data included customer names along with physical addresses and hashed passwords which puts users at risk of credential stuffing and phishing attacks.