Today, OI read an article about a breach at a children’s retailer who was bilked out of credit card data, CVV, and potentially more. You’d think this type of story came from Krebs on Security, but it didn’t. This story came from Cyberscoop. Children’s apparel company Hanna Andersson discloses data breach is the name of the article, and its the first of its kind for this year.
I’m not sure if other children’s stores were hit, although Target of 2014 sells everything including children’s clothing. This outfit sells pajamas of different kinds A Magecart-style attack was put on this web site, and of course we’ve talked about magecart before and how difficult it is to defend from.
The exposed data included payment card numbers, expiration dates, and CVV codes, along with customers’ names, billing addresses, and shipping addresses. Law enforcement officials recently told executives at Portland, Oregon-based Hanna Andersson that there was evidence of a breach, Edwards said.
I’m not sure if this will be the last timne we see this, because Magecart is so pervasive once embedded in websites.
I’m wondering if we’ll see more types of this sort this year? Only time will tell.
It is unclear how many customers were affected by the incident. While it doesn’t appear that every customer who visited the website during the two month
period was victimized, Edwards said, the company is notifying anyone potentially affected. It is also offering customers a year of credit monitoring and
a $1 million “insurance reimbursement policy.”
If you are effect by this breach, watch your statements for any type of unauthorized charge. Even the small ones can be trouble if you know you didn’t do it. They start small, and then get larger, so please make sure to do this.
The company didn’t respond to comment before press time.
Hanna Andersson is known for selling pajamas, some of which are themed around popular Disney movies. The breach shows that, regardless of the end product
being sold, anywhere on the web that houses financial data is a potential target for criminals.
Hanna Andersson’s letter to customers did not identify any suspects who may be behind the breach.
There are other types of links leading to other things that might be of interest, so please read the full article.
Thanks so much for reading, and make it a great day!
Discover more from Jared's Technology podcast network
Subscribe to get the latest posts sent to your email.