DTS
Company Details
Linkedin ID:
dollar-tree-stores
Website:
Employees number:
54,258
Number of followers:
236,177
NAICS:
43
Industry Type:
Homepage:
dollartree.com
IP Addresses:
99
Company ID:
DOL_9612070
Scan Status:
Completed
Dollar Tree Stores Company CyberSecurity Posture
dollartree.com
At Dollar Tree, it’s really all about the thrill of the hunt. As a Fortune 150 company and one of the nation’s leading value retailers, we operate more than 8,000 stores and 25 distribution centers across 48 contiguous U.S. states and five Canadian provinces. We hunt the world over to find the most exciting merchandise for our customers, who are always telling us that they can’t believe the cool items they find in our stores are such a great value. From party supplies and home décor to health & beauty, seasonal items, food & snacks, and so much more, we offer a huge selection — everything you need and want for every day, every holiday, and every occasion — all at extreme values and with NEW items arriving every week! We are experts in creative ideas and sound business management. For over 30 years, our philosophy and mission have not changed, yet we are constantly adapting to an ever-changing marketplace with innovative and creative ideas. We understand the value of a dollar, plus we understand the value of smart, innovative associates. Dollar Tree is made up of tens of thousands of talented people with the drive, imagination, and intelligence to help us continue our success — do you have what it takes to join Dollar Tree?
Dollar Tree Stores A.I CyberSecurity Scoring
DTS Risk Score (AI oriented)Between 700 and 749
DTS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DTS Global Score (TPRM)XXXX
DTS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DTS Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Dollar Tree
Ransomware
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The INC Ransomware group claimed responsibility for a data breach at **Dollar Tree**, alleging the theft of **1.2TB of sensitive and personal data**, including **passport copies, payroll forms, job letters, legal correspondence, and complaints involving sexual harassment and discrimination cases**. The leaked data primarily pertains to **former employees of 99 Cents Only Stores**, a separate entity from which Dollar Tree acquired only real estate lease rights—not its systems or data. Despite Dollar Tree’s denial of direct involvement, the ransomware group insists the breach is tied to the company. INC Ransomware, known for **double-extortion tactics**, has previously targeted high-profile victims like **Ahold Delhaize (6TB stolen) and the UK’s NHS**, demanding ransoms exceeding **$5 million**. The group operates with **sophisticated malware**, often rebranding (e.g., as *Lynx*) while maintaining aggressive extortion strategies. The breach underscores escalating cyber threats against major corporations, with **employee data exposure** posing reputational, legal, and operational risks. Dollar Tree’s response emphasizes the data’s origin from 99 Cents Only Stores, but the incident highlights vulnerabilities in third-party associations.
DTS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DTS
Incidents vs Retail Industry Average (This Year)
Dollar Tree Stores has 177.78% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Dollar Tree Stores has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types DTS vs Retail Industry Avg (This Year)
Dollar Tree Stores reported 1 incidents this year: 0 cyber attacks, 1 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — DTS (X = Date, Y = Severity)
DTS cyber incidents detection timeline including parent company and subsidiaries
DTS Company Subsidiaries
At Dollar Tree, it’s really all about the thrill of the hunt. As a Fortune 150 company and one of the nation’s leading value retailers, we operate more than 8,000 stores and 25 distribution centers across 48 contiguous U.S. states and five Canadian provinces. We hunt the world over to find the most exciting merchandise for our customers, who are always telling us that they can’t believe the cool items they find in our stores are such a great value. From party supplies and home décor to health & beauty, seasonal items, food & snacks, and so much more, we offer a huge selection — everything you need and want for every day, every holiday, and every occasion — all at extreme values and with NEW items arriving every week! We are experts in creative ideas and sound business management. For over 30 years, our philosophy and mission have not changed, yet we are constantly adapting to an ever-changing marketplace with innovative and creative ideas. We understand the value of a dollar, plus we understand the value of smart, innovative associates. Dollar Tree is made up of tens of thousands of talented people with the drive, imagination, and intelligence to help us continue our success — do you have what it takes to join Dollar Tree?
Loading...
DTS Similar Companies
O’Reilly Auto Parts started as a single store and has grown into a leading retailer in the automotive aftermarket industry with more than 6,100 locations and counting. With more than 94,000 team members, O’Reilly has expanded into 48 states, Puerto Rico, Mexico, and Canada. O’Reilly, headquartered
JD Sports Fashion
Founded in 1981 with a single store in the Northwest of England, JD Group has grown into a leading global omni-channel retailer in Sports Fashion, Outdoors, and Gyms. Our diverse and dedicated teams operate across a portfolio of renowned retail brands in multiple international markets. Listed on th
7-Eleven
7-Eleven introduced the world to convenience. And in return, the world made us the #1 convenience retailer. It started with a simple idea – give customers what they want, when and where they want it. That was 1927. And what started on a single ice dock in Dallas, Texas, has since grown to more than
Tesco
One of the world’s largest retailers of consumer goods from food to fashion. Serving our customers, communities and planet a little better every day in our stores and online is at the heart of everything we do. Founded in 1919 by Jack Cohen using the £30 he received on leaving the Royal Flying Corp
FlexKom International
The FlexKom franchise formula puts an end to business competition and gives birth to business collaboration on a global scale. Flexkom-at-home-franchise offers you the most innovative worldwide loyalty and credit card system in the world. The company is using a unique E.N.D.F. system, which is ba
Dollarama
Dollarama was founded by third-generation retailer and Canadian entrepreneur, Larry Rossy. It all started with one store, in Matane, Quebec, in 1992, and quickly grew over the next two decades to become a household name and shopping destination for Canadians from coast to coast. Dollarama today is
Sunbelt Rentals, Inc.
At Sunbelt Rentals, we provide the tools, equipment, and support our customers need to build and maintain the world around us. With locations across the U.S. and Canada and a team of passionate experts, we're here to ensure our customers have what they need to get the job done right—safely, efficie
Petco is a category-defining health and wellness company focused on improving the lives of pets, pet parents and our own Petco partners. Since our founding in 1965, we’ve been trailblazing new standards in pet care, delivering comprehensive wellness solutions through our products and services, and c
Apparel Group
Apparel Group is a multi-award-winning global fashion and lifestyle retail conglomerate based in Dubai, UAE, with operations across the GCC. Today, Apparel Group caters to millions of eager shoppers through its 2,300+ retail stores and 85+ brands on all platforms while employing over 24,000 multicul
.png)
DTS CyberSecurity News
November 26, 2025 01:05 PM
The Affordable Dollar Tree Flatware That Can Fill Your Cutlery Drawer For Just $7.50
Stock your cutlery drawer with a full set of flatware for about the same price you'd pay for a fancy latte at Dollar Tree.
November 25, 2025 09:52 PM
Dollar Tree Has Pottery Barn Dupes—Grab These Items Now!
Sure, Pottery Barn is full of all of the holiday and everyday decor you need and want in your home—but as much as you love the styles,...
November 24, 2025 11:15 PM
DIYer Shares How to Upgrade Everyday Dollar Tree Finds Into Elevated Holiday Decor, and People are Calling Them ‘Magic’
A big part of what makes the holidays feel so special and magical is all the dreamy decor. From standouts like the tree and sparkly tinsel...
November 21, 2025 09:00 PM
Our Executive Leadership
Mike was named Chief Executive Officer in December 2024. He joined Dollar Tree as Chief Operating Officer in October 2022 with...
November 05, 2025 08:00 AM
Dollar Tree’s Dreamy Holiday Glassware Looks Shockingly Similar to a Bestselling Pottery Barn Style
'I bought every one that my store had,' one shopper said.
October 28, 2025 09:26 PM
Dollar Tree to Rebuild Marietta Distribution Center Stronger Than Ever
Dollar Tree, Inc., today celebrated the groundbreaking of the company's new one million sq. ft. distribution center in Marietta, Oklahoma.
October 27, 2025 07:00 AM
The Dollar Tree Halloween Find That Affordably Copies Williams Sonoma
Dollar Tree is quickly becoming known for its dupes, and the latest Halloween item to hit shelves is too good to miss.
October 27, 2025 07:00 AM
This Simple Dollar Tree Find Instantly Upgrades The Look Of Your Stove
Keeping your kitchen spotless is a chore, especially when you're entertaining. Pick up this item to keep your stove looking great with less...
October 19, 2025 07:00 AM
Everything You Need To Know About Dollar Tree's Larger Warehouse-Style Stores
Not all Dollar Tree locations are the same. Some stores are much larger than others, with a warehouse-style layout and a wide array of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DTS CyberSecurity History Information
Official Website of Dollar Tree Stores
The official website of Dollar Tree Stores is http://www.dollartree.com.
Dollar Tree Stores’s AI-Generated Cybersecurity Score
According to Rankiteo, Dollar Tree Stores’s AI-generated cybersecurity score is 728, reflecting their Moderate security posture.
How many security badges does Dollar Tree Stores’ have ?
According to Rankiteo, Dollar Tree Stores currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Dollar Tree Stores have SOC 2 Type 1 certification ?
According to Rankiteo, Dollar Tree Stores is not certified under SOC 2 Type 1.
Does Dollar Tree Stores have SOC 2 Type 2 certification ?
According to Rankiteo, Dollar Tree Stores does not hold a SOC 2 Type 2 certification.
Does Dollar Tree Stores comply with GDPR ?
According to Rankiteo, Dollar Tree Stores is not listed as GDPR compliant.
Does Dollar Tree Stores have PCI DSS certification ?
According to Rankiteo, Dollar Tree Stores does not currently maintain PCI DSS compliance.
Does Dollar Tree Stores comply with HIPAA ?
According to Rankiteo, Dollar Tree Stores is not compliant with HIPAA regulations.
Does Dollar Tree Stores have ISO 27001 certification ?
According to Rankiteo,Dollar Tree Stores is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Dollar Tree Stores
Dollar Tree Stores operates primarily in the Retail industry.
Number of Employees at Dollar Tree Stores
Dollar Tree Stores employs approximately 54,258 people worldwide.
Subsidiaries Owned by Dollar Tree Stores
Dollar Tree Stores presently has no subsidiaries across any sectors.
Dollar Tree Stores’s LinkedIn Followers
Dollar Tree Stores’s official LinkedIn profile has approximately 236,177 followers.
NAICS Classification of Dollar Tree Stores
Dollar Tree Stores is classified under the NAICS code 43, which corresponds to Retail Trade.
Dollar Tree Stores’s Presence on Crunchbase
Yes, Dollar Tree Stores has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/dollar-tree-stores-inc.
Dollar Tree Stores’s Presence on LinkedIn
Yes, Dollar Tree Stores maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/dollar-tree-stores.
Cybersecurity Incidents Involving Dollar Tree Stores
As of November 27, 2025, Rankiteo reports that Dollar Tree Stores has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Dollar Tree Stores has an estimated 15,247 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Dollar Tree Stores ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
How does Dollar Tree Stores detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with public denial of involvement; clarification that data likely originated from 99 cents only stores..
Incident Details
Can you provide details on each incident ?
Title: Dollar Tree Data Breach Claimed by INC Ransomware Group
Description: The INC Ransomware group claimed responsibility for a data breach at Dollar Tree, alleging the theft of 1.2TB of sensitive and personal data, including passport copies, payroll forms, job letters, agreements, legal correspondence, and complaints detailing sexual harassment and discrimination cases. Dollar Tree denied involvement, stating the data likely originated from 99 Cents Only Stores, from which it acquired only select real estate lease rights. The ransomware group, known for double-extortion tactics, has a history of high-profile attacks, including those on Ahold Delhaize and the UK’s NHS.
Date Publicly Disclosed: 2025-07-29
Type: Data Breach
Threat Actor: INC Ransomware (GOLD IONIC / Lynx)
Motivation: Financial GainData TheftExtortion
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach DOL3762937090425
Data Compromised: Passport copies, Payroll forms, Job letters, Agreements, Legal correspondence, Complaints (sexual harassment, discrimination)
Brand Reputation Impact: Potential reputational damage due to association with data breach claims
Identity Theft Risk: High (due to exposure of PII and sensitive documents)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Identifiable Information (Pii), Legal Documents, Employment Records, Sensitive Complaints and .
Which entities were affected by each incident ?
Incident : Data Breach DOL3762937090425
Entity Name: Dollar Tree
Entity Type: Retail Chain
Industry: Retail
Location: United States
Size: Fortune 500 (Revenue: $17.58B in FY2025)
Incident : Data Breach DOL3762937090425
Entity Name: 99 Cents Only Stores
Entity Type: Retail Chain (Defunct)
Industry: Retail
Location: United States
Customers Affected: Former employees (data allegedly sourced from this entity)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach DOL3762937090425
Communication Strategy: Public denial of involvement; clarification that data likely originated from 99 Cents Only Stores
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach DOL3762937090425
Type of Data Compromised: Personal identifiable information (pii), Legal documents, Employment records, Sensitive complaints
Sensitivity of Data: High (includes passports, legal correspondence, harassment complaints)
Data Exfiltration: 1.2TB of data allegedly stolen
File Types Exposed: PDFsDocumentsScanned Images
Personally Identifiable Information: Passport copiesPayroll detailsEmployee namesLegal case details
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Data Breach DOL3762937090425
Ransomware Strain: INC Ransomware (aka GOLD IONIC / Lynx)
Data Exfiltration: 1.2TB of data threatened for public release
References
Where can I find more information about each incident ?
Incident : Data Breach DOL3762937090425
Source: Hackread.com
URL: https://www.hackread.com/inc-ransomware-dollar-tree-data-breach/
Date Accessed: 2025-07-29
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Hackread.comUrl: https://www.hackread.com/inc-ransomware-dollar-tree-data-breach/Date Accessed: 2025-07-29.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach DOL3762937090425
Investigation Status: Ongoing; Dollar Tree denies involvement, attributes data to 99 Cents Only Stores
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public denial of involvement; clarification that data likely originated from 99 Cents Only Stores.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach DOL3762937090425
Stakeholder Advisories: Public statement denying involvement and clarifying data origin
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: was Public statement denying involvement and clarifying data origin.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an INC Ransomware (GOLD IONIC / Lynx).
Incident Details
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-07-29.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Passport copies, Payroll forms, Job letters, Agreements, Legal correspondence, Complaints (sexual harassment, discrimination) and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Complaints (sexual harassment, discrimination), Passport copies, Legal correspondence, Job letters, Payroll forms and Agreements.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Hackread.com.
What is the most recent URL for additional resources on cybersecurity best practices ?
Most Recent URL for Additional Resources: The most recent URL for additional resources on cybersecurity best practices is https://www.hackread.com/inc-ransomware-dollar-tree-data-breach/ .
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing; Dollar Tree denies involvement, attributes data to 99 Cents Only Stores.
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Public statement denying involvement and clarifying data origin, .
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=dollar-tree-stores' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
