Lovesac Data Breach Linked to RansomHub Ransomware Attack

The Lovesac data breach has been confirmed after a ransomware attack tied to the RansomHub group. Hackers gained unauthorized access to the retailer’s systems in February 2025. The company has since taken steps to contain the incident and support those affected.

Breach Timeline

Lovesac discovered suspicious activity on February 28, 2025. Investigations revealed that attackers accessed systems between February 12 and March 3, 2025. On March 3, RansomHub publicly claimed responsibility and threatened to release stolen data if a ransom was not paid.

Data Exposed

According to Lovesac, the attackers accessed full names and other personal information. However, the company has not disclosed how many people were impacted or whether both customers and employees were involved. The lack of clarity leaves questions about the true scale of the incident.

Company Response

Lovesac is offering 24 months of free Experian credit monitoring and identity protection, with enrollment open until November 28, 2025. At this stage, the company reports no evidence of data misuse. Still, it urges affected individuals to remain cautious of phishing attempts and other fraud risks.

Why It Matters

The Lovesac data breach shows how ransomware groups continue to pressure victims with threats of public exposure. RansomHub has targeted multiple organizations in recent months, reinforcing its position as a persistent threat. The incident highlights how even consumer-focused retailers must prepare for highly organized cyberattacks.

Conclusion

The Lovesac data breach demonstrates the ongoing risks posed by ransomware gangs like RansomHub. Although Lovesac moved quickly to detect and contain the intrusion, unanswered questions remain about the scale of the compromise. By offering extended credit monitoring, the company seeks to protect individuals, but the incident underscores the urgent need for transparency and stronger defenses in the retail sector.