Toronto

Loblaw resets passwords after security breach of its loyalty program

Loblaw has reset passwords for all its PC Plus rewards collectors' online accounts after points were stolen from some members' accounts.

Company will reimburse those people whose points were stolen

Loblaw will reimburse those customers whose loyalty points were stolen during a recent security breach. (Aaron Vincent Elkaim/Canadian Press)

Loblaw has reset passwords for all its PC Plus rewards collectors' online accounts after points were stolen from some members' accounts.

The company posted a warning on its website saying it requires all members to create new passwords — regardless of whether or not they changed them following the recent security breach.

Earlier this month, Loblaw urged members to create unique, secure passwords after some people noticed their points were missing.

The company said at the time that the breach stemmed from people using favourite or weak username and password combinations across multiple sites. Those were stolen from other sites and used to access PC Plus accounts.

The company said it's reimbursing members whose points were stolen.

now