NCIX was a nice source for computer parts. (I once bought a microSDHC from them.) Then they went bust. (I doubt the fact that I had bought something from them had anything to do with it.)
Now they are in legal trouble. Somebody seems to have obtained the servers they used, with lots of customer information still there. I'm not surprised that they've still got customer data on their drives: lots of companies get sloppy about that. (It's a bit more surprising when it was a company that dealt with hackers and geeks on a daily basis. It's why the EU Privacy DD and GDPR say you shouldn't keep data beyond a time you might need it again. And even more surprising when it was credit card data: hasn't anybody ever heard of PCI-DSS?)
Also included in the lawsuit is the auction company that sold the stuff ...
............ This message may or may not be governed by the terms of http://www.noticebored.com/html/cisspforumfaq.html#Friday or https://blogs.securiteam.com/index.php/archives/1468