On April 12th, to make it easy for users to check if their information was hacked, breach tracking service HaveIBeenPwned added the leaked database to its website.

The incident contributed a total of 2,842,669 breached records to the HIBP database, of which the service noted that 46% were duplicates already present in its records.

As email IDs and phone numbers have been compromised in this breach, Giant Tiger customers should exercise caution while responding to messages or emails received from the chain regarding payment information or alerts for payment completion.

Breach through third-party

Giant Tiger, in the statement issued on March 23, said they became aware of issues that affected a “third party vendor” the company uses to manage interactions with customers.

Because of the nature of business operations handled by the said third party, the company said, the compromised information may vary by individual. Information may include the names and email addresses of the customers who either subscribed to Giant Tiger emails or had accounts created on its official website.

Additionally, it may include the name, address, and phone numbers of the Giant Tiger VIP loyalty members or customers placing an online order for delivery or pick up at a local store.