Popular Los Angeles-based cannabis brand Stiiizy has confirmed that hackers accessed reams of sensitive customer data, including government-issued documents and medical cannabis cards, during a November cyberattack.
In a data breach notice filed with California’s attorney general this week, Stiiizy said it was notified by its point-of-sale processing vendor that an “organized cybercrime group” had compromised the data from some of its retail locations.
In a letter sent to affected customers, Stiiizy confirmed that the hackers acquired customer data processed from the unnamed vendor between October 10 and November 10, 2024.
Stiiizy said the stolen information included information on customers’ driver’s licenses, passports, and medical cannabis cards. Hackers also accessed customer names, addresses, dates of birth, transaction data, and other unspecified personal information.
Stiiizy, which operates 39 stores across the United States, has not yet said how many of its customers were affected but said the incident affected four of its retail locations in California. Stiiizy did not respond to TechCrunch’s questions.
Stiiizy hasn’t confirmed or described the nature of the incident, but Texas-based cybersecurity startup Halcyon AI said in a November blog post that the cannabis operator had been the target of a ransomware attack.
The Everest ransomware group claimed credit for the cyberattack, according to Halcyon, which said the gang had stolen the personal information, including identification documents, of more than 420,000 Stiiizy customers.
Disrupt 2026: The tech ecosystem, all in one room
Your next round. Your next hire. Your next breakout opportunity. Find it at TechCrunch Disrupt 2026, where 10,000+ founders, investors, and tech leaders gather for three days of 250+ tactical sessions, powerful introductions, and market-defining innovation. Register now to save up to $400.
Save up to $300 or 30% to TechCrunch Founder Summit
1,000+ founders and investors come together at TechCrunch Founder Summit 2026 for a full day focused on growth, execution, and real-world scaling. Learn from founders and investors who have shaped the industry. Connect with peers navigating similar growth stages. Walk away with tactics you can apply immediately
Offer ends March 13.
In a post on its dark web leak site, which TechCrunch has seen, Everest claims to have published the data stolen from Stiiizy after the company “ignored” its ransom demands.
