Card Data Stolen From 5 Million Saks and Lord & Taylor Customers

Share it with your friends Like

Thanks! Share it with your friends!


Card Data Stolen From 5 Million Saks and Lord & Taylor Customers
The research firm that identified the Saks breach, Gemini Advisory, said on Sunday
that a group of Russian-speaking hackers known as Fin7 or JokerStash posted online on Wednesday that it had obtained a cache of five million stolen card numbers, which the thieves called BIGBADABOOM-2.
The theft is one of the largest known breaches of a retailer
and shows just how difficult it is to secure credit-card transaction systems despite the lessons learned from other large data breaches, including the theft of 40 million card numbers from Target in 2013 and 56 million card numbers from Home Depot in 2014.
“We have become aware of a data security issue involving customer payment card data at certain Saks Fifth Avenue, Saks Off 5th
and Lord & Taylor stores in North America,” the company said in a statement.
A well-known ring of cybercriminals has obtained more than five million credit
and debit card numbers from customers of Saks Fifth Avenue and Lord & Taylor, according to a cybersecurity research firm that specializes in tracking stolen financial data.
Once we have more clarity around the facts, we will notify our customers quickly
and will offer those impacted free identity protection services, including credit and web monitoring.”
Hudson’s Bay said that its investigation was continuing but that its e-commerce platforms appeared to have been unaffected by the breach.
But the researchers, working in conjunction with banks, analyzed a sample of the records and determined
that the card numbers all seemed to have been used at Saks and Lord & Taylor stores, mostly in New York and New Jersey, from May 2017 to March 2018.


Write a comment