The Halloween Spot

What Happened

In September 2019, the Halloween costume store The Halloween Spot suffered a data breach. Originally misattributed to fancy dress store Smiffys, the breach contained 13GB of data with over 10k unique email addresses alongside names, physical and IP addresses, phone numbers and order histories. The Halloween Spot advised customers the breach was traced back to "an old shipping information database".

Compromised Data

Email addresses

IP addresses

Names

Phone numbers

Physical addresses

Purchases

Recommended Actions

Monitor for Suspicious Activity

Watch for unusual login attempts, spam and phishing emails.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

Breach Overview

Affected Accounts:

10.7 thousand
Breach Occurred:

September 2019
Added to HIBP:

16 Mar 2020

Recommended Actions

Change Your Password

If you haven't changed your The Halloween Spot password since 2019, do so immediately.

Enable Two-Factor Authentication

Add an extra layer of security to your account.

Check Other Accounts

If you used the same password elsewhere, change those too.

Monitor for Suspicious Activity

Watch for unusual login attempts or messages from your account.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

The Halloween Spot

What Happened

Compromised Data

Recommended Actions

Monitor for Suspicious Activity

Breach Overview

10.7 thousand

September 2019

16 Mar 2020

Recommended Actions

Change Your Password

Enable Two-Factor Authentication

Check Other Accounts

Monitor for Suspicious Activity

Services

Information