Topgolf Callaway (Callaway) suffered a data breach initially of August, which uncovered the delicate private and account knowledge of greater than one million clients.
Callaway is an American sports activities tools maker and vendor specializing in golf tools and equipment similar to golf equipment, balls, baggage, gloves, and caps.
The corporate is current in additional than 70 international locations worldwide and has an annual income of over $1.2 billion. It employs roughly 25,000 individuals.
In a letter despatched to impacted people on August 29, 2023, the corporate explains that an IT system incident that occurred on August 1st has affected the provision of its e-commerce companies and uncovered sure buyer info to an unauthorized entity.
The corporate says that it detected the incident early on and took quick motion to include it. Compromised buyer knowledge contains:
- Full names
- Delivery addresses
- Electronic mail addresses
- Telephone numbers
- Order histories
- Account passwords
- Solutions to security questions
This impacts clients of Callaway and its sub-brands Odyssey, Ogio, and Callaway Gold Preowned websites that every one function beneath the identical enterprise umbrella.
Additionally, in accordance with the data breach notification, the incident affected 1,114,954 people in the US.
The discover clarifies that no fee card info, authorities ID, or Social Safety Numbers (SSNs) had been uncovered as a result of incident.
As a result of person account info similar to passwords and security questions had been uncovered, Callaway has compelled a password reset for all buyer accounts to forestall unauthorized entry.
To regain entry, customers are robotically directed to “callawaygolf.com/reset-password,” the place they’ll discover directions on find out how to proceed.
In case you are utilizing the identical credentials for different web sites or on-line companies, it’s strongly really helpful to vary passwords to a string of alphanumeric and image characters. This precaution ought to reduce the chance of credential-stuffing assaults.
Lastly, Callaway clients must be suspicious of communications requesting to share further knowledge and they need to deal with messages from unknown senders with as probably malicious.
