A publisher based in Illinois has found that a security vulnerability in its shopping card software allowed hackers to access the personal information and card details of thousands of customers.
5,204 customers were directly affected by the attack, which took place between April 16th and June 19th this year, but 9,000 people have been warned about the breach as a security measure. The stolen information includes names, addresses, phone numbers, email addresses, account passwords and payment card information, including cardholder names, card numbers, expiration dates, and card verification values.
The breach was brought to Sourcebooks’ attention by Visa, which discovered that a number of fraudulent charges had been reported on the site.
To prevent this from happening again, the company has put in place new security measures that bring it in line with Payment Card Industry data security standards. It has also said that internal processes were be changed to make sure that future issues can be identified quickly.
Sourcebooks is far from the only company to suffer a high profile cyber attack in recent months. US chain Dairy Queen recently fell victim to mPOS malware used by hackers to steal card information between the card being swiped and the data being encrypted, while JP Morgan revealed in August that it had suffered one of the largest cybersecurity breaches in history.
As the demand for immediate payments implementation grows in the United States, Iliad Solutions have identified one of the largest risks to face the payments industry over the next few years.
Barclays has signed contracts with six of the fintech startups that just graduated from its second New York accelerator programme.
Company card killer Pleo has raised $3m in new funding as it prepares for public launch in the UK and Denmark.
Cheques are become less and less common in the UK according to new research from global market research firm Mintel which claims contactless card use has overtaken cheque payments in the UK for the first time.