Beckett Collectibles Data Breach
Beckett Collectibles Sports Card Marketplace Breach (2025): 1 Million User Records Including Home Address Exposed — Website Defaced
Sports and entertainment collectibles grading and marketplace.
Risk Interpretation
Exposure enables phishing, fraud, and affluent-customer targeting. Submission history can also reveal ownership of valuable collectibles and create physical-security concerns.
Impact & Downstream Threats
The most prominent institutional cost so far has been reputational rather than financial. Beckett's silence in the weeks after the breach surfaced drew sharp customer criticism on social media and prompted independent cybersecurity outlets to publish follow-up coverage when the company did not. There has been no public regulatory action, settlement, or class-action filing announced as of early 2026, but the underlying conditions for one exist: a verified breach of consumer data, a high-value cus
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
- Doxxing risk from physical address exposure
Threat Vectors
Breach Intelligence
Executive Summary
Beckett Collectibles suffered a data breach in November 2025 that included the public defacement of part of its website. A threat actor advertised the stolen database for sale on a hacking forum, and portions of the data circulated publicly through dark-web markets and breach-tracking sites in the weeks that followed.\n\nThe leaked data covered more than one million customer records. Fields included names, usernames, email addresses, phone numbers, and physical billing and shipping addresses. The first publicly circulating subset of around 541,000 email addresses focused on North American customers, with a larger corpus of about 1.04 million records surfacing the following month. Have I Been Pwned independently verified and indexed the dataset.\n\nBeckett Collectibles did not publicly confirm or characterize the incident in any detail in the immediate aftermath, leaving affected users to learn of the breach through cybersecurity outlets and breach-tracking services. For affected individuals, the principal risks are phishing, account takeover at services where the same email and password were reused, and physical-security concerns linked to the exposure of home shipping addresses. Customers who hold high-value collectibles face an elevated targeting risk, since the dataset effectively maps a population of likely owners of expensive cards and memorabilia. Anyone with a Beckett account should change passwords there and on any service using the same credentials, and treat any unsolicited contact about pickup, authentication, or shipping with caution.
About Beckett Collectibles
Beckett Collectibles is a U.S.-based grading, authentication, and marketplace company focused on sports cards, trading cards, and entertainment collectibles. The brand traces back to 1979 as a price guide and has since grown into a multi-service business covering certification, magazines, online marketplace listings, and submission management. Its customer base ranges from casual hobbyists to professional dealers and high-value collectors. The business operates from offices in the Dallas-Fort Worth area and processes large volumes of customer submission, shipping, and payment-related records as part of its grading and trading workflow.
Why They Hold Your Data
Collectibles-grading and authentication firms collect customer identity, addresses, order history, item-submission records, payment-adjacent data, and collector account activity across appraisal and marketplace workflows.
Recent Developments
A data breach involving Beckett Collectibles came to public attention in mid-November 2025, accompanied by website content defacement. Customer records were advertised for sale on a hacking forum, and portions of the dataset were subsequently leaked publicly. As of early 2026, Beckett Collectibles had not issued a public statement directly acknowledging or characterizing the incident, and customers reported that the company had temporarily made phone support unavailable as inquiries surged. Have I Been Pwned independently verified and indexed the leaked data, ultimately covering more than 1 million records.
Data Points Exposed
Exposure Categories
Canonical Fields
email_address, full_name, phone_number, physical_address, username
Dark Web Verification
- Dataset containing ~1.0M records identified in breach intelligence sources
- Data indexed and searchable across breach notification platforms
- Source: Beckett Collectibles Data Breach
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Beckett Collectibles
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam