Dymocks Booksellers Suffers Data Breach Impacting 836,000 Customers

Dymocks Booksellers is warning customers their personal information was exposed in a data breach after the company's database was shared on hacking forums. Dymocks is a bookstore chain operating 65 stores in Australia, New Zealand, and Hong Kong, and also an online shop that sells printed books, e-books, stationery supplies, games, and digital media. The company was informed that its customer data was stolen on September 6th, 2023, by Troy Hunt, the creator of the data breach notification service 'Have I Been Pwned' (HIBP), after a threat actor released it on a hacking forum. In a notice posted to Dymocks' website, the book retailer explains that they see no evidence of penetration on its computer systems, and they're currently investigating a potential security breach on third-party partners. As such, how the data was obtained, the duration of unauthorized access, the extent of malicious activity, and the exact scope of the impact of this incident remain unclear.