Realcent.org

https://www.techradar.com/news/this-could-be-the-most-expensive-data-breach-ever

JM Bullion, which sells gold, silver, copper, platinum and palladium, became the victim of a cyberattack back in February that was not discovered until July.
It remains unclear why the hack is only just being disclosed publicly.

Potentially, this breach could have resulted in sensitive information, including customer names, addresses and even payment information, falling into the wrong hands.
The malicious code was only removed from JM Bullion website on July 17 – meaning that it was present for a staggering five months.

That sucks. Thankfully, I never bought from them.

They should send everyone a monster box to make amends.

They are a good supplier and sadly this can happen to almost any merchant. Fortunately for me personally I haven't used them during this time frame and better yet - due to mail fraud in a separate and unrelated issue with a stolen check I had to close in Feb the checking account that I had used with JMB for direct debit in the past. (Maybe that PITA issue was a God thing that protected me from greater loss.)

For those who can do cash only with local dealers or coin shows, the dealers often won’t even know your name and almost certainly won’t have your home address on their computer.

I'm really disappointed in their lack of preventive testing. Their client base must be quite extensive.