The INC Ransom group has allegedly breached Dollar Tree, a major Fortune 200 company. Dollar Tree is a prominent discount retail giant operating over 16,700 stores across the United States and Canada under the brands Dollar Tree, Family Dollar, and Dollar Tree Canada. The threat actors claim to have stolen 1.2TB of data during the attack and have begun leaking files as proof. This incident also appears to heavily involve data from 99 Cents Only Stores, whose intellectual property and store leases were recently acquired by Dollar Tree following the former’s bankruptcy.
The data samples allegedly leaked by the ransomware group suggest a severe breach impacting both corporate and personal information. The exposure of these files could lead to significant privacy violations for employees and poses serious legal and reputational risks for the retail corporation. The type of compromised data allegedly includes a vast array of sensitive documents.
The allegedly leaked data includes:
- Employee Personally Identifiable Information (PII), including a passport card
- Confidential employment offer letters containing salary information
- Human Resources documents, such as associate separation forms
- Internal records detailing harassment and discrimination allegations
- Confidential legal communications with law firms
- Signed Non-Disclosure Agreements (NDAs)
- Internal company handbooks and policies
