Friday, January 18, 2019
  • 43% of Enterprises Not Ready to Say Goodbye to Windows 7
  • Client Applications: A Hacker’s Easiest Target?
  • Protect Your WordPress from Cybersecurity Threats
  • What is Amazon GovCloud?
  • Voipo Data Breach Exposes Millions | Avast

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
    • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
Data Security SBN News Security Bloggers Network Threats & Breaches 

Home » Cybersecurity » Data Security » Electronics Retailer Confirms Breach Attempt of 5.9M Payment Cards

Electronics Retailer Confirms Breach Attempt of 5.9M Payment Cards

by David Bisson on June 13, 2018

A consumer electronics retailer has confirmed a data breach attempt to compromise the details of 5.9 million payment cards.

On 13 June, Dixons Carphone released a notice disclosing its investigation into an instance of unauthorized data access. The company came across the suspicious activity while reviewing its systems and data. Subsequently, it contacted security experts to help determine what happened.

The investigation revealed that unknown individuals attempted to compromise 5.9 million payment cards found in the processing systems of Currys PC World and Dixons Travel, which are subsidiaries of Dixons Carphone. Most of those cards, the statement explained, came equipped with chip-and-pin protection, with potentially affected data not containing customers’ PINs, card verification values (CVVs) or authentication data.

Additionally, Dixons Carphone found evidence that unauthorized data access compromised 105,000 non-EU issued payment cards lacking chip-and-pin protection along with 1.2 million records containing personally identifiable information (PII) including names, physical addresses and email addresses. The company observed no indication that any of that data left its systems. But out of an abundance of caution, it contacted card providers to help them protect affected customers. It also began contacting those whose non-financial information might have been breached.

Alex Baldock, chief executive for Dixons Carphone, apologized in the statement and said he was “extremely disappointed” that the incident occurred:

The protection of our data has to be at the heart of our business, and we’ve fallen short here…. We are determined to put this right and are taking steps to do so…. Cyber crime is a continual battle for business today and we are determined to tackle this fast – changing challenge.

The United Kingdom’s Information Commissioner’s Office (ICO) confirmed it’s heard from Dixons Carphone with respect to this latest incident.

“An incident involving Dixons Carphone has been reported to (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/electronics-retailer-confirms-breach-attempt-of-5-9m-payment-cards/

June 13, 2018June 13, 2018 David Bisson Breach, data, IT Security and Data Protection, Latest Security News, pii
  • ← Is there an easy way to exclude paths from being scanned?
  • Searchinspired.com Redirect Removal →

Predict 2019 Virtual Summit

Featured Blog

Fortinet All Blogs

A Layered Approach to Cybersecurity: People, Processes, and Technology

Fortinet All Blogs

The Security Implications for 5G and IoT

Fortinet All Blogs

Fighting the Evolution of Malware

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Can Smart Home Leaks Lead to Major Cyberattacks?
Is NTA Just Another Kind of IDS?
Security Boulevard Chat: The Evolution of Network Security with FireMon’s Tim Woods
Government Shutdown’s Negative Impact on Federal Cybersecurity
Ryuk Ransomware That Hit U.S. Newspapers Not State-Sponsored
Del Rio City Hall Disables Internet Connection for All Departments after Ransomware Attack
Q&A: Here’s why robust ‘privileged access management’ has never been more vital
Security Boulevard Chat: The Evolution of Network Security with FireMon’s Tim Woods
3 Reasons Why the Integration of Cybersecurity Tools is a Growing Imperative
5 Essential Data Security Questions for Developers

Upcoming Webinars

Mon 28

Next-Generation Cybersecurity

January 28 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Securing the Code: DevOps Security and AppSec

CISO/Security Vendor Relationship Series

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Client Applications: A Hacker’s Easiest Target?
Cybersecurity DevOps Industry Spotlight Security Boulevard (Original) 

Client Applications: A Hacker’s Easiest Target?

January 18, 2019 Bill Horne | 4 hours ago 0
PKI Deployment: The Top 10 Definitive Answers
Cybersecurity Data Security Industry Spotlight Network Security Security Boulevard (Original) 

PKI Deployment: The Top 10 Definitive Answers

January 17, 2019 Mark B. Cooper | Yesterday 0
Shopping for Secure IoT Devices
Cybersecurity Industry Spotlight IoT & ICS Security Security Boulevard (Original) 

Shopping for Secure IoT Devices

January 16, 2019 Yeshwant Chauhan | 2 days ago 0

Top Stories

Fortnite Attack Allowed Taking Over Player Accounts
Application Security Data Security DevOps Featured Identity & Access News Security Boulevard (Original) Spotlight Vulnerabilities 

Fortnite Attack Allowed Taking Over Player Accounts

January 17, 2019 Lucian Constantin | Yesterday 0
Barracuda Networks Embeds Incident Management in Email Security Suite
Cybersecurity Featured Incident Response News Security Boulevard (Original) Social Engineering Spotlight 

Barracuda Networks Embeds Incident Management in Email Security Suite

January 17, 2019 Michael Vizard | Yesterday 0
Windows VCF Zero-Day Exploit Allows Remote Code Execution
Endpoint Featured Malware News Security Boulevard (Original) Social Engineering Spotlight Vulnerabilities 

Windows VCF Zero-Day Exploit Allows Remote Code Execution

January 16, 2019 Lucian Constantin | 1 day ago 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2019 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.