News
Salesfloor Suffers Breach According to Dark Web Reports
BlogBreachesResourcesNews
Salesfloor Suffers Breach According to Dark Web Reports

Salesfloor Suffers Breach According to Dark Web Reports

UpGuard Team
UpGuard Team
January 28, 2026

Key facts: People Powered E-Commerce data breach

  • Date reported: January 22, 2026.
  • Threat actor: LAPSUS$ group.
  • Records exposed: Approximately 1 million user records.
  • Data volume: 4TB of uncompressed data.
  • Data types: Source code, system logs, development assets, SQL databases, and customer PII (names, emails, phone numbers).
  • Impacted platform: Canadian retail SaaS provider Salesfloor (salesfloor.net).
  • Severity: Classified as informational, though it involves high-risk exposure of source code and downstream retail customer data.

What happened in the People Powered E-Commerce data breach?

People Powered E-Commerce (salesfloor.net), a Canadian retail SaaS company, was the subject of a security incident reported on January 22, 2026. The breach has been attributed to the threat actor known as LAPSUS$, who allegedly targeted the company's internal systems to extract significant volumes of data.

According to reports, the incident involved the exposure of 4TB of uncompressed data, which included source code, system logs, and customer information. The breach reportedly impacts approximately 1 million records and affects several major retail brands that utilize the Salesfloor platform. While the severity is listed as informational, the exposure of source code and customer logs suggests potential risks to intellectual property and user privacy. Organizations in this position typically face challenges regarding data integrity and unauthorized access.

Who is behind the incident?

The threat actor LAPSUS$ has claimed responsibility for this incident. LAPSUS$ is a high-profile cybercriminal group known for targeting major technology and retail organizations globally. The group gained notoriety for its extortion-based tactics, often leaking stolen source code and internal data to public forums or Telegram channels to pressure victims.

Their methods frequently involve sophisticated social engineering, credential theft, and the exploitation of vulnerabilities in third-party service providers. LAPSUS$ has been linked to numerous significant campaigns over the past several years, often focusing on high-value targets to maximize visibility.

Impact and risks for People Powered E-Commerce customers

For customers and retail partners of People Powered E-Commerce, the incident presents several potential risks. The exposure of customer information and system logs could lead to targeted phishing campaigns, credential abuse, or attempts to exploit vulnerabilities discovered within the leaked source code. There is a possibility that sensitive details could be used to facilitate identity theft or unauthorized access to associated retail accounts. Use of this data by malicious actors could result in service disruptions or further downstream security incidents.

Typical outcomes of such breaches include increased fraudulent activity and the need for comprehensive system audits. Affected individuals should immediately update their login credentials and monitor their accounts for suspicious transactions. Transparency from the vendor regarding the specific data categories involved is critical for effective risk mitigation and long-term security.

Frequently asked questions

What happened in the People Powered E-Commerce security breach?

In January 2026, the LAPSUS$ group allegedly exfiltrated 4TB of uncompressed data from Salesfloor (salesfloor.net). The breach included proprietary source code, internal databases, and customer PII—such as names, emails, and phone numbers—belonging to major retail brands using the platform.

When did the People Powered E-Commerce breach occur?

The People Powered E-Commerce breach was publicly reported on January 22, 2026. LAPSUS$ referenced the incident around that time, but the attack may have occurred earlier.

What data was exposed?

The types of data involved in the People Powered E-Commerce incident include source code, development assets, SQL databases, system logs, and customer PII such as names, email addresses, and phone numbers. LAPSUS$ reportedly leaked approximately 4TB of uncompressed data.

Is my personal information at risk?

If you interacted with People Powered E-Commerce or its retail partners, there's a possibility your personal information could be affected. Similar incidents often involve email addresses, login details, or financial records. Stay alert for updates and take precautionary measures to secure your accounts.

How secure is Salesfloor?

Salesfloor is a retail technology platform that unifies clienteling, virtual shopping, and conversational AI to help retailers provide personalized, multichannel customer experiences and drive sales both online and in-store.
  • Check icon
    View our free preliminary report on Salesfloor’s security posture
  • Check icon
    13 risk factors, including email security, SSL, DNS health, open ports and common vulnerabilities
View Salesfloor's score
View score
https://salesfloor.net
Security ratings
Deliver icon

Sign up for our newsletter

UpGuard's monthly newsletter cuts through the noise and brings you what matters most: our breaking research, in-depth analysis of emerging threats, and actionable strategic insights.

Latest news

Stay up-to-date with the latest news in cybersecurity.
Match Group Suffers Alleged Breach According to Dark Web Reports

Match Group Suffers Alleged Breach According to Dark Web Reports

A data breach involving Match.com was reported on January 28, 2026. Learn about the incident details, impact on customers, and recommended security measures.
UpGuard Team
UpGuard Team
January 29, 2026
Republic.com Suffers Data Breach According to Dark Web Reports

Republic.com Suffers Data Breach According to Dark Web Reports

Reports indicate a Republic (republic.com) data breach on Jan 21, 2026, affecting 4.9M users. Learn about the leaked data and how to protect your information.
UpGuard Team
UpGuard Team
January 27, 2026
FitnesPark Suffers Data Breach According to Dark Web Reports

FitnesPark Suffers Data Breach According to Dark Web Reports

A data breach involving Fitness Park was reported on 21 January 2026. Learn about the incident details, impact on customers, and recommended security measures.
UpGuard Team
UpGuard Team
January 21, 2026
BuyLottoOnline Suffers Breach According to Dark Web Reports

BuyLottoOnline Suffers Breach According to Dark Web Reports

A data breach involving buylottoonline.com was reported on 21 January 2026. Learn about the incident details, impact on customers, and recommended security measures.
UpGuard Team
UpGuard Team
January 21, 2026
YouHack Suffers Breach According to Dark Web Reports

YouHack Suffers Breach According to Dark Web Reports

A data breach involving YouHack was reported on 21 January 2026. Learn about the incident details, impact on customers, and recommended security measures.
UpGuard Team
UpGuard Team
January 21, 2026
Carrefour Suffers Data Breach According to Dark Web Reports

Carrefour Suffers Data Breach According to Dark Web Reports

A data breach involving Carrefour was reported on January 22, 2026. Learn about the incident details, impact on customers, and recommended security measures.
UpGuard Team
UpGuard Team
January 22, 2026
View all news
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

Protect your organization

Get in touch or book a free demo.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating