Toys “R” Us Canada Confirms Customer Data Breach After Dark Web Leak

The company is warning affected customers to stay vigilant for phishing attempts following a confirmed data exposure.

Breach confirmed after dark web posting

Toys “R” Us Canada has confirmed a data breach affecting customer information, after threat actors published stolen records on the dark web. The company learned of the incident on July 30, 2025, when a post appeared online claiming to contain data from its systems.

A subsequent investigation, carried out in collaboration with independent cybersecurity experts, verified the authenticity of the leaked data. According to customer notification letters, the attackers managed to copy certain records from the retailer’s database containing personal information.

Scope of the exposed information

The extent of the breach varies between customers, but leaked details may include:

• Full names
• Addresses
• Email addresses
• Phone numbers

Toys “R” Us Canada emphasized that sensitive data such as account passwords and payment card details were not compromised.

While the company has yet to disclose the number of impacted customers and the identity of the threat actor, it has confirmed that it is still working with regulators and has reported the incident to Canadian privacy authorities.

Strengthening security measures

Following the breach, Toys “R” Us Canada implemented additional security measures to reinforce its IT infrastructure. The company noted that these upgrades were made under the guidance of cybersecurity professionals to prevent similar incidents in the future.

As part of its response, the retailer is continuing to monitor its systems for any signs of further unauthorized activity and has pledged transparency as the investigation progresses.

Warning to customers

Affected customers are urged to remain cautious about unsolicited communications and phishing emails that may impersonate Toys “R” Us. The company advised recipients not to share personal information or click on any suspicious links in messages claiming to be from the retailer.

Toys “R” Us Canada, which operates around 40 stores nationwide, has not commented on whether a ransom was demanded or how many records were involved in the breach.

Staying prepared for data breaches with Bitdefender Digital Identity Protection

Even when data breaches are beyond your control, being prepared can make all the difference. Bitdefender Digital Identity Protection helps you stay informed by continuously monitoring your personal information across both the public and the Dark Web, and alerting you if your data appears in a breach or is exposed online.

This allows you to respond quickly to threats, secure your accounts and reduce potential risks to your identity. Staying proactive is key to minimizing the impact of inevitable cyber incidents.