Friday, September 29, 2023

Security Boulevard Logo

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming Webinars
    • Calendar View
    • On-Demand Webinars
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
    • Techstrong.tv Podcast
    • TechstrongTV - Twitch
  • Library
  • Related Sites
    • Techstrong Group
    • Cloud Native Now
    • DevOps.com
    • Security Boulevard
    • Techstrong Research
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • Devops Chat
    • DevOps Dozen
    • DevOps TV
  • Media Kit
  • About
  • Sponsor

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Hot Topics
  • What You Need to Know About the libwebp Exploit
  • Why Ordr? Why Now?
  • Build for Detection Engineering, and Alerting Will Improve (Part 3)
  • Crocs enhances customer journey and safeguards revenue growth with Kasada
  • Threat Spotlight: The Dark Web and AI
Data Security SBN News Security Bloggers Network Threats & Breaches 

Home » Cybersecurity » Data Security » Electronics Retailer Confirms Breach Attempt of 5.9M Payment Cards

SBN

Electronics Retailer Confirms Breach Attempt of 5.9M Payment Cards

by David Bisson on June 13, 2018

A consumer electronics retailer has confirmed a data breach attempt to compromise the details of 5.9 million payment cards.

AWS Builder Community Hub

On 13 June, Dixons Carphone released a notice disclosing its investigation into an instance of unauthorized data access. The company came across the suspicious activity while reviewing its systems and data. Subsequently, it contacted security experts to help determine what happened.

The investigation revealed that unknown individuals attempted to compromise 5.9 million payment cards found in the processing systems of Currys PC World and Dixons Travel, which are subsidiaries of Dixons Carphone. Most of those cards, the statement explained, came equipped with chip-and-pin protection, with potentially affected data not containing customers’ PINs, card verification values (CVVs) or authentication data.

Additionally, Dixons Carphone found evidence that unauthorized data access compromised 105,000 non-EU issued payment cards lacking chip-and-pin protection along with 1.2 million records containing personally identifiable information (PII) including names, physical addresses and email addresses. The company observed no indication that any of that data left its systems. But out of an abundance of caution, it contacted card providers to help them protect affected customers. It also began contacting those whose non-financial information might have been breached.

Alex Baldock, chief executive for Dixons Carphone, apologized in the statement and said he was “extremely disappointed” that the incident occurred:

The protection of our data has to be at the heart of our business, and we’ve fallen short here…. We are determined to put this right and are taking steps to do so…. Cyber crime is a continual battle for business today and we are determined to tackle this fast – changing challenge.

The United Kingdom’s Information Commissioner’s Office (ICO) confirmed it’s heard from Dixons Carphone with respect to this latest incident.

“An incident involving Dixons Carphone has been reported to (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/electronics-retailer-confirms-breach-attempt-of-5-9m-payment-cards/

June 13, 2018June 13, 2018 David Bisson Breach, data, IT Security and Data Protection, Latest Security News, pii
  • ← Is there an easy way to exclude paths from being scanned?
  • Dixons Carphone data breach – millions put at risk of fraud →

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Oct 03

Way Too Vulnerable: Uncovering the State of the Identity Attack Surface

October 3 @ 11:00 am - 12:00 pm
Oct 11

ASPM: Leveling the AppSec Playing Field

October 11 @ 1:00 pm - 2:00 pm
Oct 16

Shadow Access: Where IAM Meets Cloud Security

October 16 @ 3:00 pm - 4:00 pm
Oct 17

Securing Cloud-Native Applications Across the Software Development Life Cycle

October 17 @ 11:00 am - 12:00 pm
Oct 18

Live Workshop on ‘SCA 2.0’: Using Runtime Analysis to Find High-Risk SCA Vulnerabilities

October 18 @ 12:00 pm - 1:30 pm
Oct 19

Managing Security Posture and Entitlements in the Cloud

October 19 @ 1:00 pm - 2:00 pm
Oct 24

When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig

October 24 @ 11:00 am - 12:00 pm
Oct 24

Reporting From the Pipeline: The State of Software Security in DevOps

October 24 @ 1:00 pm - 2:00 pm
Oct 26

How to Shift Left the Right Way

October 26 @ 3:00 pm - 4:00 pm
Oct 30

Zero-Trust

October 30 @ 1:00 pm - 2:00 pm

More Webinars

Subscribe to our Newsletters

TSTV Podcast

Most Read on the Boulevard

Building Your Incident Response Team
Qakbot Takedown Resembles Hack Back, Will Botnet, Malware Be Resurrected?
More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator
ZenRAT Targets Windows Users with Fake Bitwarden Site
‘All of Sony’ Hacked, Claims Ransomed.vc Group
What CIOs Can Learn from Airbnb’s Official ‘Party Pooper’
Insider Risk Digest: Week 37-38
Cyber Week 2023 & The Israel National Cyber Directorate Presents – CIO Perspectives and the Innovation Community
Google LibWebP Arbitrary Code Execution Vulnerability (CVE-2023-5129) Notification
Unlock Cyber Security as a Service: 2023 Insights!

Download Free eBook

7 Must-Read eBooks for Security Professionals

Industry Spotlight

Lawsuit Filed Against Google, Meta, H&R Block for Sharing Taxpayer Data
Cyberlaw Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight News Security Boulevard (Original) Spotlight 

Lawsuit Filed Against Google, Meta, H&R Block for Sharing Taxpayer Data

September 28, 2023 Jeffrey Burt | Yesterday 0
Xenomorph Android Banking Trojan Makes Landfall in US
Application Security Cybersecurity Data Security Featured Identity & Access Industry Spotlight Malware Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Xenomorph Android Banking Trojan Makes Landfall in US

September 26, 2023 Jeffrey Burt | 2 days ago 0
More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator
Analytics & Intelligence API Security Application Security AppSec Cloud Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security Deep Fake and Other Social Engineering Tactics Editorial Calendar Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Identity and Access Management Incident Response Industry Spotlight Insider Threats Malware Mobile Security Most Read This Week Network Security News Popular Post Regulatory Compliance Securing the Cloud Securing the Edge Security at the Edge Security Awareness Security Boulevard (Original) Social Engineering Software Supply Chain Security Spotlight Threat Intelligence Threats & Breaches Vulnerabilities Zero-Trust 

More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator

September 25, 2023 Richi Jennings | 3 days ago 0

Top Stories

China-Backed Hacks of Cisco Routers Worry Feds — BlackTech Revenge?
Analytics & Intelligence API Security Application Security Cloud Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps DevSecOps Editorial Calendar Featured Governance, Risk & Compliance Humor Identity & Access Identity and Access Management Incident Response IOT IoT & ICS Security Malware Most Read This Week Network Security News Popular Post Securing the Cloud Securing the Edge Security at the Edge Security Awareness Security Boulevard (Original) Security Challenges and Opportunities of Remote Work Security Operations Spotlight Threat Intelligence Threats & Breaches Vulnerabilities Zero-Trust 

China-Backed Hacks of Cisco Routers Worry Feds — BlackTech Revenge?

September 28, 2023 Richi Jennings | Yesterday 0
US: China’s BlackTech Group Hacks Cisco Firmware in Cyberattacks
Cybersecurity Data Security Endpoint Featured Identity & Access IoT & ICS Security Malware Network Security News Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches 

US: China’s BlackTech Group Hacks Cisco Firmware in Cyberattacks

September 28, 2023 Jeffrey Burt | Yesterday 0
Exabeam Brings Generative AI to SIEM Platform
Analytics & Intelligence Cybersecurity Endpoint Featured Incident Response News Security Boulevard (Original) Social - Facebook Spotlight Threat Intelligence 

Exabeam Brings Generative AI to SIEM Platform

September 28, 2023 Michael Vizard | Yesterday 0

Security Humor

a PRC flag flies in a stiff breeze

China-Backed Hacks of Cisco Routers Worry Feds — BlackTech Revenge?

Security Boulevard Logo White

DMCA

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: [email protected]

Useful Links

  • About
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • DMCA Compliance Statement
  • Privacy Policy

Related Sites

  • Techstrong Group
  • Cloud Native Now
  • DevOps.com
  • Digital CxO
  • Techstrong Research
  • Techstrong TV
  • Techstrong.tv Podcast
  • DevOps Chat
  • DevOps Dozen
  • DevOps TV
Powered by Techstrong Group
Copyright © 2023 Techstrong Group Inc. All rights reserved.