What Happened
In January 2026, specifically on January 29, the online flower shop texas-blooms.com was one of nine floral websites breached by a threat actor known as “888,” who published the stolen data on Breachforums.bf. The incident compromised sensitive personally identifiable information (PII) and transactional details for thousands of customers across the affected sites (including Shoppigmint.com, MyJoyFlowerShop.com, LakesFloral.com, CentralMarketFlowers.com, ArtAmongTheFlowers.com, TheCottageFlowersAndGifts.com, CreationStationFlowers.com, and Ctlflorist.com), such as full names, residential addresses, email addresses, phone numbers, and detailed order histories or purchase information. The exact number of records from texas-blooms.com alone is not specified, but the collective breach heightened risks of phishing, identity theft, and targeted scams due to the personalized nature of the exposed data; it was likely enabled by vulnerabilities in shared hosting or outdated plugins, underscoring threats to small e-commerce businesses.
