MarineMax reports customer & employee data exfiltrated in March 10 cyberattack

MARINEMAX INC

On March 10, 2024, MarineMax discovered unauthorized third-party access to portions of its information environment.
Containment measures caused some disruption; operations continued materially; affected environment is now remediated.
A cybercrime organization exfiltrated limited data including customer and employee personally identifiable information.
Notifications to affected parties, regulators, and law enforcement are planned; investigation continues with external experts.
Company states incident has not had a material impact on operations; still assessing financial condition impact.

Key facts

Extracted from this filing and checked against the source text.

Cybersecurity Incidents SEC 8-K Item 1.05 confidence 0.9

MARINEMAX INC disclosed a cybersecurity incident: A third party gained unauthorized access to a limited portion of the information environment associated with the retail business, exfiltrating limited data including customer and employee personally identifiable information. Impact: Containment measures resulted in some disruption to a portion of the business; operations continued in all material respects; the company has incurred certain expenses and continues to evaluate the full impact. Materiality is still being assessed. Discovered 2024-03-10.

Nature: A third party gained unauthorized access to a limited portion of the information environment associated with the retail business, exfiltrating limited data including customer and employee personally identifiable information.
Impact: Containment measures resulted in some disruption to a portion of the business; operations continued in all material respects; the company has incurred certain expenses and continues to evaluate the full impact.
Materiality: assessing
Discovery: 2024-03-10

Exact text from the filing

as of the date of this filing, the Incident has not had a material impact on the Company’s operations, and the Company is still in the process of determining whether the Incident is reasonably likely to materially impact the Company’s financial condition or results of operations.

View on SEC.gov

2 cybersecurity incidents filed in the last 30 days. Browse all cybersecurity incidents →

MARINEMAX INC filing history →

Source: SEC EDGAR

accession 0000950170-24-038881

view filing index on sec.gov

view primary document

Machine-readable: JSON · Markdown · Plain text

This headline and bullets were generated automatically by deepseek-v4-flash:cloud@v2 from the public filing. Read the source on SEC.gov before relying on any specific claim. Not investment advice. See methodology for how this pipeline works.