P2019-ND-007

PetSmart, Inc.

The Organization?s third-party vendor hosts a website allowing customers to enrol to receive text messages (http://petsmartmobile.hit2c.com/us/join). The website encountered a vulnerability that allowed unauthorized access to telephone numbers of customers that were identified as Alberta residents, between August 12-16, 2018. The vendor addressed the issue on August 16, 2018 ensuring the website’s security. This incident did not impact any other of the Organization?s websites or e-commerce platforms. The incident affected individuals (customers) that enrolled to receive text messages from the Organization and who entered their telephone number on the affected site on or before August 16, 2018.

File Type: pdf
Categories: 2019
Tags: Unauthorized access