Stiiizy, a cannabis company, says that hackers have accessed customer ID documents
Popular Los Angeles-based cannabis brand Stiiizy has confirmed that hackers accessed reams of sensitive customer data, including government-issued documents and medical cannabis cards, during a November cyberattack.
In a data breach notice filed with California’s attorney general this week, Stiiizy said it was notified by its point-of-sale processing vendor that an “organized cybercrime group” had compromised the data from some of its retail locations.
In a letter sent to affected customers, Stiiizy confirmed that the hackers acquired customer data processed from the unnamed vendor between October 10 and November 10, 2024. Stiiizy confirmed that the stolen data included information from customers’ passports, driver’s licences, and medical marijuana cards. Hackers also accessed customer names, addresses, dates of birth, transaction data, and other unspecified personal information.
Stiiizy, which operates 39 stores across the United States, has not yet said how many of its customers were affected but said the incident affected four of its retail locations in California. Stiiizy didn’t respond to TechCrunch questions. TechCrunch was not able to get a response from Stiiizy.
