PipingRock.com

In April 2024 the American dietary supplement retailer PipingRock suffered a significant data breach. The incident led to the unauthorized exposure of approximately two million customer records. The leaked data includes sensitive personal information such as full names, email addresses, phone numbers, and physical residential addresses. The breach appears to be the result of a targeted cyber attack where the threat actor successfully exfiltrated the customer database and subsequently published it on various illicit forums. This exposure puts affected users at a high risk of phishing, identity theft, and social engineering attacks specifically targeting health and wellness consumers.