SelectBlinds data breach overview:
- Who: Online window treatment company SelectBlinds announced it suffered a data breach that exposed the personal information of more than 200,000 consumers.
- Why: SelectBlinds attributed the data breach to an unauthorized third party installing malware on its website that allowed it to data scrape on logins on the check-out page.
- Where: The SelectBlinds data breach affected certain consumers nationwide.
Online window treatment company SelectBlinds announced it suffered a data breach that exposed the username and password of more than 200,000 consumers.
SelectBlinds, in a letter sent to affected consumers in California, said the data breach was the result of an unauthorized third party embedding malware on the company’s website that allowed them to data scrape on logins on the check-out page, a process known as e-skimming.
According to the letter, the data breach began on Jan. 7, 2024, and was not discovered by SelectBlinds until Sept. 28, 2024.
SelectBlinds said consumers were affected by the data breach in the event they logged into the checkout page on the SelectBlinds website when making or considering a purchase.
“We take the security of your personal information seriously, and we sincerely regret having to share this news with you,” the company wrote.
The company urged those affected by the data breach to change any passwords on other online accounts where the same log-in credentials were used.
SelectBlinds said it has taken steps to ‘prevent a reocurrence’ of data breach
SelectBlinds said it completed its investigation into the incident Oct. 10 and that it has taken steps to “prevent a reocurrence.”
“Among other actions, we have increased monitoring, further improved security controls, and reinforced our systems,” the company wrote.
SelectBlinds said it also temporarily locked the accounts of users affected by the data breach, warning they will be prompted to securely change their password the next time they go to log on.
Consumers with more information about the data breach can contact SelectBlinds by telephone at 1-866-586-7032.
SelectBlinds agreed to pay $10 million earlier this year to resolve claims the company showed fake regular prices on its website in order to make consumers believe the sale prices were a better deal than they actually were.
The settlement, if approved, would award class members with a 12% cash refund for California customers who file a claim or a non-expiring 12% SelectBlinds store credit for consumers who do not file a claim.
Are you affected by the SelectBlinds data breach? Let us know in the comments.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
One thought on SelectBlinds announced card-skimming data breach
Used exclusively a bank credit card with 0% interest, because we were buying over $1,000 in blinds, card last used 7/2024 on Select Blinds website. Card had not been used since. On March 31, 2025 some idiot purchased $2,400 in LA Dodgers tickets using this card. I live in NJ and have never been to LA.