Cannabis retail company STIIIZY reports data breach
Learn More
STIIIZY, Inc., a cannabis retail company, is reporting a data breach affecting customers at four of their California retail locations.
The incident occurred through a compromise of their point-of-sale vendor's systems by an organized cybercrime group between October 10, 2024, and November 10, 2024. STIIIZY was notified of the breach on November 20, 2024. STIIIZY has implemented additional security measures to prevent similar incidents.
Affected Locations:
- STIIIZY Union Square (San Francisco)
- STIIIZY Mission (San Francisco)
- STIIIZY Alameda
- STIIIZY Modesto
Exposed Data Types:
- Government-issued identification information:
- Names
- Addresses
- Dates of birth
- Age
- Driver's license numbers
- Passport numbers
- Photographs
- Signatures
- Medical cannabis card information
- Transaction histories
- Other personal information
The number of affected individuals has not been disclosed in the notification.
Update - As of 17th of January 2025, STIIIZY reports that the incident is affecting approximately 380,000 customers.
STIIIZY has established a dedicated assistance line (833-799-4284) and is offering free credit monitoring services through Cyberscout (a TransUnion company) for 12 months.
