Yandy.com

Yandy, operating under the domain Yandy.com, is an online retailer specializing in women's lingerie and related apparel. The company serves customers primarily through its digital storefront, offering a range of intimate wear products designed for direct consumer purchase. Its business model focuses on e-commerce transactions, with operations centered in the United States where it maintains its headquarters. The organization handles sensitive customer financial data as part of its standard retail payment processing activities, including credit and debit card information required for online purchases.

A significant cybersecurity incident impacted Yandy in 2014, involving multiple breaches between May and August that exposed customer payment details. Intruders accessed databases containing card numbers, expiration dates, CVV codes, and email addresses. The company detected the unauthorized access in August and implemented corrective security measures after the fourth breach occurrence. Affected customers received notifications about the compromise of their financial information along with guidance on identity theft protection. This series of breaches demonstrated vulnerabilities in Yandy's data protection systems during that period, though specific technical details about the intrusion methods or subsequent security enhancements were not publicly disclosed in available reports. The incident remains a notable event in the company's operational history given the sensitivity of the exposed data and the repeated nature of the breaches over a four-month timeframe.