Petco data breach: Application setting ‘inadvertently’ shared personal information online

article

FILE - Th Petco logo is seen on the exterior of its store at the Buckhorn Plaza. (Photo by Paul Weaver/SOPA Images/LightRocket via Getty Images)

Petco, the pet products and services franchise, confirmed that customer information was "inadvertently" made accessible online.

The company said once they were made aware of the issue, it "took immediate steps to correct the error." 

A setting on one of the company’s applications made certain Petco files available online, a company spokesperson said. 

What they're saying:

"We recently identified a setting in one of our applications which inadvertently made certain Petco files accessible online. Upon identifying the issue, we took immediate steps to correct the error and began an investigation. We notified individuals whose information was involved and continue to monitor for further issues. We take this incident seriously. To help prevent something like this from happening again, we have taken and will continue to take steps to enhance the security of our network."

What information was impacted? 

Big picture view:

Personal information including Social Security numbers, driver’s license numbers, account numbers, credit or debit card numbers and even birth dates were involved in the breach, according to a TechCrunch report.

Petco filed legal notices in California, Massachusetts and Montana following the incident. 

California Attorney General Rob Bonta shared a sample notice that was being sent to impacted customers on the California Department of Justice website. 

What we don't know:

The company did not say how many customers were impacted. 

What you can do:

Customers who were affected by the breach will be given complimentary credit and identity monitoring services, according to the sample letter.

For additional information, call 855-403-1819.