LOBLAW has disclosed a data breach in which threat actors gained access to basic customer information. The retailer, one of Canada’s largest food and pharmacy chains with more than 2,400 stores, said the breach exposed names, email addresses and phone numbers, but passwords, health information and credit card data were not compromised, and PC Financial was not impacted. It is not clear how many customers were affected by the incident.
The disclosure comes as security researchers note that no known ransomware group has claimed credit for this breach at the time of reporting. The company described the intrusion as being carried out by a “criminal third-party,” and the breach occurred in a broader context of ongoing cyber threats facing large retailers.
Written by Eduard Kovacs and published on 15 March 2026, the piece highlights that consumers’ basic contact details were at risk, underscoring the ongoing visibility of data-protection concerns in the sector.