The LCBO says an unauthorized part embedded malicious code on its website which was able to obtain customer information and some personal data may have been compromised.
A cybersecurity incident knocked out its website and app but both are now back and running.
The LCBO warns that anyone who provided personal info on their website and proceeded to its payment page between Jan. 5 -10 could have their info compromised.
That could include names, email and mailing addresses, and credit card information.
Orders placed through the LCBO mobile app were not affected.