Reuters reports:
Bed Bath & Beyond Inc said on Friday a third party had this month improperly accessed its data through a phishing scam by accessing the hard drive and certain shared drives of one of its employees.
The big-box retailer said it was reviewing the data that was accessed so it can determine whether the drives contained any sensitive or personally identifiable information.
Read more at Yahoo!
Update1: Bed Bath & Beyond confirmed a breach.
Update2: Their CTO, Rafeh Masood, is leaving, but that reportedly has nothing to do with this incident and more to do with the company’s financial woes this year.