The Story of Best Buy Data Breach

Posted on by David Lukic in Data Breaches September 29, 2020

Along with Sears, Kmart, and Delta, Best Buy was also impacted by a massive cyber intrusion. Best Buy, like many other retail companies, use chat service to interact with customers. They outsource their chat services to a company called [24] That third-party vendor experienced a cyber-attack, which allowed hackers to gain access to Best Buy customer payment information. Although Best Buy insists that very few customers were affected, everyone who is a Best Buy customer should take notice. Executives responded to the Best Buy data breach by saying,

“As best we can tell, only a small fraction of our overall online customer population could have been caught up in this [24] incident, whether or not they used the chat function.”

Upon learning of the breach, Best Buy contacted law enforcement and worked with the vendor and cybersecurity experts to glean the extent of the damage. 

best buy data breach

When Was the Best Buy Data Breach?

The Best Buy data breach took place between September 27 and October 12 of 2017. Hackers installed a piece of malware into the chat software used by various retail outfits. The code was designed to steal credit cards and other personal information. News of the incident did not break until April of 2018

How to Check if Your Victim of Best Buy Breach

After the incident, Best Buy worked to determine which customers were affected by the data breach. They then alerted them through the mail with explicit instructions on how to respond. Although no firm figure was ever released on how many customers were affected from Best Buy leak, you should assume you were and take action. 

best buy breach

Best Buy Account Hacked? Here's What to Do 

If you paid for anything at Best Buy or had a Best Buy credit card, there is a good chance that information ended up in the hands of the hackers. Best Buy has a page on their website, which clearly explains what types of information they collect on customers, how it is used, and who they share it with. Additionally, they posted this notice on their website regarding the [24] incident to help customers understand the dangers and what to do. Some tips for dealing with this type of data breach are:

  • Cancel any credit cards used with Best Buy and change the PIN codes.

  • Reset your password for and other accounts using the same password.

  • Carefully monitor your Best Buy credit card statements and bank accounts for any fraudulent charges. 

  • Get a copy of your credit report and consider a credit freeze to keep criminals from opening new accounts in your name. 

  • Sign up for credit monitoring with a company like

Will Best Buy Data Breach Cause Identity Theft?

Even the basic information stolen by the group responsible for the Best Buy data breach is enough for identity theft and jumpstart phishing campaigns or scams that trick you into divulging the additional information necessary to steal your identity. Collections of data are taken every day and sold on the dark web for this very purpose.

best buy leak

What to Do to Protect Yourself Against Hackers and Thieves

In this very digital age, it is almost impossible to believe that you can keep your information private and your data safe. However, there are precautions you can take and techniques you can use to keep things secure.

  • Keep your computer and other devices updated with the latest antivirus software and run deep scans often.

  • Closely monitor your bank and credit card statements and look for suspicious activity.

  • Never give out any personal information to anyone you don’t know.

  • Watch out for scam and phishing emails.

  • Never click a link or download an attachment from inside an email.

About the Author
IDStrong Logo

Related Articles

The Anatomy Of Amazon Data Breach Explained

Along with being an online merchant, Amazon also supplies cloud servers to some heavy hitters in the fina... Read More

What is an Accidental Web Exposure and How to Prevent Data Leakage

Data breaches take many forms, and one of them is through accidental web exposure and data leakage. Milli... Read More

The Saga of T-Mobile Data Breach

T-Mobile Data Breach incident occurred many times. Once from September 1, 2013, and September 16, 2015 an... Read More

Anthem Data Breach Exposed 78 Million Records

In the Anthem Data Breach of 2015, hackers were able to steal 78.8 million member’s records. What start... Read More

Scan Your Records for Breaches, Leaks & Exposures!