Cyber Incident Victim: Watchfinder

In late September 2022, Watchfinder, a luxury pre-owned watch marketplace, experienced a data breach after unauthorized actors compromised an employee account and accessed customer records. The company notified affected individuals via email, confirming the exposure of personal information including email addresses, telephone numbers, and purchase history details related to specific watches customers had bought or expressed interest in acquiring. The breach did not involve financial data, passwords, or physical addresses according to the company's disclosure. The incident exposed sensitive consumer preferences that could indicate financial capacity and collecting habits, creating potential targeting opportunities for malicious actors. Watchfinder's notification occurred around September 30, 2022, though the initial intrusion date wasn't publicly specified beyond occurring "on or around" September 26.

The company's response included direct customer communications but omitted public announcements through its official website or social media channels like Twitter. No security advisory was published on corporate platforms despite the data's potential value for crafting targeted phishing campaigns or financial scams against high-net-worth individuals. The stolen watch preference lists created unique risks by revealing customer luxury purchasing behaviors beyond basic contact information. While Watchfinder confirmed containment of the compromised employee account, it provided no technical details about detection methods, attacker origins, or broader system impacts. The breach exclusively affected customer data with no indication of operational system disruption or additional compromised employee accounts beyond the initial entry point.