Millions of customer data including the payment card details stolen by hackers at certain Saks Fifth Avenue, Saks OFF 5TH, and Lord & Taylor stores that located in North America.
They are currently investigating the issue and there is no indication that it affects company’s e-commerce or other digital platforms, Hudson’s Bay, Home Outfitters, or HBC Europe.
“HBC identified the issue and has taken steps to contain it” reads the company statement.” once the company has more clarity around the facts, it will notify customers quickly and will offer those impacted free identity protection services, including credit and web monitoring. “
Also, the company confirmed that no indications of Social Security or Social Insurance numbers, driver’s license numbers, or PINs have affected in the data breach.
HBC said that they were working leading data security investigators to get the customer’s information and their current investigation in progress.
The breach was highlighted by Geminiadvisory, according to their analysis of the data available ” the entire network of Lord & Taylor and 83 Saks Fifth Avenue locations have been compromised. The majority of stolen credit cards were obtained from New York and New Jersey locations”.
Geminiadvisory estimate the breach may occur between May 2017 to present.Hacking JokerStash syndicate announced the sale of compromised records on On March 28, 2018.
“Using our analytical tools, that were specifically developed so as to empower money firms to watch assets portfolio exposure at intervals the deep & darknet, we’ve got established with a high level of confidence that victims of the attack area unit Saks avenue, Saks avenue OFF fifth, a reduced outlet of the posh sales outlet Saks Fifth Avenue, and Lord & Taylor Stores” says Geminiadvisory.
Geminiadvisory says at the time of writing approximately 35,000 records for Saks Fifth Avenue and 90,000 records for Lord & Taylor.
As a safety practice customers are recommended to closely monitor their account statements. If any unauthorized transaction detected you should notify your card issuer immediately.
LegionLoader, a C/C++ downloader malware, first seen in 2019, delivers payloads like malicious Chrome extensions,…
In a recent security advisory, ASUS has alerted users to critical vulnerabilities affecting several of…
NTT Docomo, one of Japan’s leading telecommunications and IT service providers, experienced a massive disruption…
Apple Inc. has agreed to pay $95 million to settle a proposed class-action lawsuit alleging…
A critical vulnerability discovered in the popular macOS terminal emulator iTerm2 has raised concerns among…
The CVE-2024-49112 vulnerability in Windows LDAP allows remote code execution on unpatched Domain Controllers, as…