
99 Cents Only Stores Company Cyber Security Posture
99only.comWith more than 40 years of operating experience, 99 Cents Only Stores is the leading retailer of extreme value stores in the southwestern United States. Our stores are located in California, Nevada, Arizona and Texas and offer consumable products with an emphasis on name brands primarily priced at 99.99 cents or less. Our differentiated merchandise mix, combined with outstanding value, enable us to appeal to a broad consumer demographic, increase overall customer traffic and frequency of customer visits, as well as strengthen customer loyalty. Our stores are significantly larger than traditional dollar stores, enabling us to offer a wider assortment and provide our customers with a spacious, comfortable shopping experience.
9CS Company Details
99-cents-only-stores
4570 employees
28027.0
452
Retail
99only.com
Scan still pending
99 _7796813
In-progress

Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.

.png)

99 Cents Only Stores Company Scoring based on AI Models
Model Name | Date | Description | Current Score Difference | Score |
---|---|---|---|---|
AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
99 Cents Only Stores Company Cyber Security News & History
Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
---|---|---|---|---|---|---|---|
99 Cents Only Stores | Ransomware | 85 | 4 | 7/2025 | 99-252073125 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: On Wednesday, the INC ransomware gang claimed to have attacked 99 Cents Only Stores, exfiltrating 1.2 terabytes of sensitive and personal data, including scans of passports. The company filed for bankruptcy last April and closed all of its stores in June 2024 due to financial hardship. Dollar Tree, which acquired some lease rights and assets from 99 Cents Only Stores, denied any involvement in the attack, stating that the data breach involved former 99 Cents Only employees. | |||||||
99 Cents Only | Ransomware | 85 | 3 | 8/2025 | 99-526080125 | Link | |
Rankiteo Explanation : Attack with significant impact with internal employee data leaksDescription: 99 Cents Only, a discount retailer that declared bankruptcy in 2024, experienced a data breach where hackers claimed to have stolen 1.2 terabytes of sensitive and personal data, including passport scans. The data was initially thought to belong to Dollar Tree, but it was later clarified that the data belonged to 99 Cents Only. The breach has significant implications as it involves the leak of personal information of former employees. |
99 Cents Only Stores Company Subsidiaries

With more than 40 years of operating experience, 99 Cents Only Stores is the leading retailer of extreme value stores in the southwestern United States. Our stores are located in California, Nevada, Arizona and Texas and offer consumable products with an emphasis on name brands primarily priced at 99.99 cents or less. Our differentiated merchandise mix, combined with outstanding value, enable us to appeal to a broad consumer demographic, increase overall customer traffic and frequency of customer visits, as well as strengthen customer loyalty. Our stores are significantly larger than traditional dollar stores, enabling us to offer a wider assortment and provide our customers with a spacious, comfortable shopping experience.
Access Data Using Our API

Get company history
.png)
9CS Cyber Security News
Inc Ransomware Claims 1.2TB Data Breach at Dollar Tree
The group claims to have breached the company's security and stolen 1.2TB of sensitive and personal data. โThey became a victim of the dataย ...
Dollar Tree gains designation rights for 170 leases of 99 Cents Only Stores
Dollar Tree gains designation rights for 170 leases of 99 Cents Only Stores ยท US Tariffs are shifting - will you react or anticipate? Don't letย ...
99 Cents Only to close all 371 stores and wind down its business
The City of Commerce deep-discount retailer, for years one of the few true "dollar" stores, calls it quits after more than four decades.
Former 99 Cents Only Store in Rohnert Park to reopen as Dollar Tree
Former 99 Cents Only Store to reopen as Dollar Tree in Rohnert Park ยท He's won 8 Grammys, a presidential medal and starred with Michael B.
Every single 99 Cents Only Store is closing because of inflation, retail theft 'and other macroeconomic headwinds'
The 99 Cents Only Stores discount chain has announced plans to wind down its business operations. All 371 stores will be closed in Arizona,ย ...
99 Cents Only to close down all stores
99 Cents Only Stores will be closing all of its stores as the company announced plans to wind down its business operations.
99 Cents Only Stores Strikes Deal With Sponsors, Creditors
99 Cents Only Stores LLC's recent deal with its backers and creditors will shave off a large chunk of debt and bolster the cash on its balance sheet.
(PDF) A Comprehensive Review of Cyber Security Vulnerabilities, Threats, Attacks, and Solutions
have been made to provide a cyber security environment to protect the assets of institutions,. organizations, and individuals [2].
A sizable number of 99 Cents Only stores will be taken over by Dollar Tree: 'We see strong profitable growth potential'
A sizable number of 99 Cents Only stores will be taken over by Dollar Tree: 'We see strong profitable growth potential'

9CS Similar Companies

MR DIY Malaysia
MR D.I.Y. is a home-grown enterprise with over 1,300 stores across Malaysia and Brunei. The home improvement retailer has dedicated to make a positive difference in the lives of its valued customers by offering convenience at all its stores nationwide and online at mrdiy.com.my All MR. D.I.Y. store

Wawa, Inc.
Here at Wawa, the sky's the limit.โ Voted as โAmericaโs Favorite Convenience Store,โ Wawa operates a chain of convenience retail stores located in Pennsylvania, New Jersey, Delaware, Maryland, Indiana, Ohio, Kentucky, Virginia, North Carolina, Georgia, Alabama, Florida, and Washington D.C. We're fa

Kroger
At Kroger, we believe no matter who you are or how you like to shop, everyone deserves affordable, easy-to-enjoy, fresh food. This idea is embodied in our simple taglineโFresh for Everyoneโข. Kroger ranks as one of the worldโs largest retailers. We are nearly half a million associates across 2,800

Douglas
The DOUGLAS Group, with its commercial brands DOUGLAS, NOCIBร, Parfumdreams and Niche Beauty, is the number one omnichannel premium beauty destination in Europe. The DOUGLAS Group is inspiring customers to live their own kind of beauty by offering a unique assortment online and in around 1,900 store

Wesfarmers
Wesfarmers โรรฎ a diversified corporation From its origins in 1914 as a Western Australian farmers' cooperative, Wesfarmers has grown into one of Australia's largest listed companies. With headquarters in Western Australia, its diverse business operations cover: home improvement and outdoor living;

Chico's FAS, Inc.
Our passion for fashion and desire to inspire confidence and joy have been guiding the creation of our womenโs clothing, intimates, and accessories for more than 40 years. Our portfolio consists of three brands: Chicoโs, WHBM, and Soma found in over 1,000 stores throughout the United States and onli

Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
9CS CyberSecurity History Information
How many cyber incidents has 9CS faced?
Total Incidents: According to Rankiteo, 9CS has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at 9CS?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware.
Incident Details
Can you provide details on each incident?

Incident : Data Breach
Title: INC Ransom Data Breach of 99 Cents Only
Description: INC Ransom recently added Dollar Tree to its data leak site, claiming to have stolen 1.2 terabytes of sensitive and personal data from Dollar Tree. However, Dollar Tree clarified that the data actually belongs to 99 Cents Only, a discount retailer that declared bankruptcy in 2024.
Type: Data Breach
Attack Vector: Ransomware
Threat Actor: INC Ransom
Motivation: Financial (Ransom)

Incident : Ransomware Attack
Title: Ransomware Attack Claims Against Dollar Tree
Description: Dollar Tree denies involvement in a ransomware attack claimed by the INC ransomware gang, which targeted 99 Cents Only Stores.
Date Detected: 2024-06
Date Publicly Disclosed: 2024-10-02
Type: Ransomware Attack
Attack Vector: Data Exfiltration
Threat Actor: INC Ransomware Gang
Motivation: Financial
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident?

Incident : Data Breach 99-526080125
Data Compromised: Passport scans

Incident : Ransomware Attack 99-252073125
Data Compromised: Scans of passports, Sensitive and personal data
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Passport scans, Scans of passports and Sensitive and personal data.
Which entities were affected by each incident?

Incident : Ransomware Attack 99-252073125
Entity Type: Retail
Industry: Retail
Location: California, Texas, Arizona, Nevada
Size: Nearly 400 stores at its peak

Incident : Ransomware Attack 99-252073125
Entity Type: Retail
Industry: Retail
Location: United States, Canada
Size: 9,000 stores
Data Breach Information
What type of data was compromised in each breach?

Incident : Data Breach 99-526080125
Type of Data Compromised: Passport scans
Sensitivity of Data: High
Data Exfiltration: True
Personally Identifiable Information: True

Incident : Ransomware Attack 99-252073125
Type of Data Compromised: Scans of passports, Sensitive and personal data
Sensitivity of Data: High
Data Exfiltration: 1.2 terabytes
Personally Identifiable Information: Scans of passports
Ransomware Information
Was ransomware involved in any of the incidents?

Incident : Data Breach 99-526080125
Ransom Demanded: True
Ransomware Strain: INC Ransom
Data Exfiltration: True

Incident : Ransomware Attack 99-252073125
Ransomware Strain: INC Ransomware
Data Exfiltration: 1.2 terabytes
References
Where can I find more information about each incident?

Incident : Data Breach 99-526080125
Source: The Record
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: The Record, and Source: Recorded Future NewsDate Accessed: 2024-10-02, and Source: SentinelOne ResearchDate Accessed: 2024-10-02.
Investigation Status
What is the current status of the investigation for each incident?

Incident : Ransomware Attack 99-252073125
Investigation Status: Ongoing
Additional Questions
General Information
What was the amount of the last ransom demanded?
Last Ransom Demanded: The amount of the last ransom demanded was True.
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident were an INC Ransom and INC Ransomware Gang.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2024-06.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-10-02.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Passport scans, Scans of passports and Sensitive and personal data.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Passport scans, Scans of passports and Sensitive and personal data.
Ransomware Information
What was the highest ransom demanded in a ransomware incident?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was True.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident are The Record, Recorded Future News and SentinelOne Research.
Investigation Status
What is the current status of the most recent investigation?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
