Particle.news
Download on the App Store
7 ARTICLES
·
yesterday

Toys 'R' Us Canada Discloses Summer Cyber Incident That Copied Customer Contact Data

Key details, including how many customers were affected, remain undisclosed.

Image
Image
Signage outside a Toys 'R' Us store near Balzac, Alta., on July 14, 2021. THE CANADIAN PRESS IMAGES/Larry MacDougal
A Toys "R" Us store is seen Tuesday, September 19, 2017 in Montreal. Toys "R" Us has filed for bankruptcy protection in the United States and says it intends to follow suit in Canada. THE CANADIAN PRESS/Paul Chiasson

Overview

  • The company says it learned of the breach on July 30, 2025, after an online post suggested data theft, and it hired third-party cybersecurity experts to contain and investigate.
  • Investigators found unauthorized actors copied a subset of customer records containing names, addresses, emails, and phone numbers.
  • Toys “R” Us Canada says passwords and credit card details were not exposed, and it reports no evidence of fraudulent use of the copied data.
  • The retailer has implemented additional security measures, engaged specialized legal counsel, and is reporting the incident to applicable privacy regulators.
  • The company has not disclosed how many customers or which banners were affected, and it is advising customers to watch for phishing or spoofing attempts.