Tuesday, February 7, 2023

Security Boulevard Logo

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming Webinars
    • On-Demand Webinars
  • Events
    • Upcoming Events
    • On-Demand Events
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
    • Techstrong.tv Podcast
    • Techstrong.tv Video Podcast
    • TechstrongTV - Twitch
  • Library
  • Related Sites
    • Techstrong Group
    • Container Journal
    • DevOps.com
    • Security Boulevard
    • Techstrong Research
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv Video Podcast
    • Techstrong.tv - Twitch
    • Devops Chat
    • DevOps Dozen
    • DevOps TV
  • Media Kit
  • About Us
  • Sponsor

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Hot Topics
  • The Rise of Script Kiddies: Where Inexperience Meets Opportunity
  • Third-Party Breaches Impact Vast Majority of Organizations
  • Multi-Tenant Data Security for Databases with Record-Level Encryption
  • IronNet Monthly Global Threat Update
  • Are Unnecessary Vulnerabilities Polluting Your Software Supply Chain?
Data Security SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Kathmandu Notifies Customers of Security Incident Involving Its Website

SBN

Kathmandu Notifies Customers of Security Incident Involving Its Website

by David Bisson on March 13, 2019

Outdoor apparel and equipment retail chain Kathmandu said it’s in the process of notifying customers about a security incident involving its website.

TechStrong Con 2023Sponsorships Available

On 13 March, Kathmandu released a notification disclosing how the company became aware of the security incident between 8 January and 12 February. At some point during that time, an unauthorized third party gained access to the retail chain’s website. Those bad actors then might have abused their unauthorized access to steal customers’ personal information and/or payment details as they completed their online orders.

According to its statement, Kathmandu responded by enlisting the help of IT and digital security experts to investigate the incident and determine how many customers it might have affected. It used these individuals’ expertise to improve the security of its website and confirm that the incident had not affected its wider IT environment.

Xavier Simonet, CEO of Kathmandu, explains in the notice that the company is still in the process of responding to the incident:

Whilst the independent forensic investigation is ongoing, we are notifying customers and relevant authorities as soon as practicable. As a company, Kathmandu takes the privacy of customer data extremely seriously and we unreservedly apologise to any customers who may have been impacted.

Customers who believe they were victims of the security event should contact their banks and/or credit card providers to discuss their options, including whether they should put a security freeze on their credit reports.

Kathmandu’s statement doesn’t provide insight into how the digital attackers gained unauthorized access to the company website. It also doesn’t illuminate whether it’ll be providing affected customers with complementary access to identity theft protection services.

This security incident follows just a few months after OXO International Ltd, a manufacturer of kitchen utensils, office supplies and housewares, disclosed of a data breach involving customer (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/kathmandu-notifies-customers-of-security-incident-involving-its-website/

March 13, 2019March 13, 2019 David Bisson IT Security and Data Protection, Kathmandu, Latest Security News, security, website
  • ← Clinic hit by ransomware recovers in hours thanks to solid incident response plan
  • Judging Facebook’s Privacy Shift →

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows
TSTV Podcast

Subscribe to our Newsletters

Most Read on the Boulevard

Anker’s Eufy Admits ‘Lie’ After TWO Months — Still no Apology
AI, Processor Advances Will Improve Application Security
The Top HEAT Attacks of 2022
OpenSSF Head Delivers AI Warning for Application Security
Countering Insider Threats as the Great Resignation Continues
Mustang Panda APT Group Uses European Commission-Themed Lure to Deliver PlugX Malware
Hospitals Hit by DDoS Attacks as Killnet Group Targets the Healthcare Sector – What You Need to do Now
ChatGPT and API Security
Automating security for Linux servers and applications
Top Web Application Security Testing Companies

Upcoming Webinars

Mon 13

AI in Machine Learning

February 13 @ 1:00 pm - 2:00 pm
Wed 15

Understanding Cyber Insurance Identity Security Requirements for 2023

February 15 @ 11:00 am - 12:00 pm
Wed 15

Where Will DevSecOps ‘Shift’ Next?

February 15 @ 1:00 pm - 2:00 pm
Tue 21

Headwinds, Crosswinds and Tailwinds: Securing the Cloud in Turbulent Times

February 21 @ 1:00 pm - 2:00 pm
Wed 22

Three Steps to Software Supply Chain Security Success in 2023

February 22 @ 1:00 pm - 2:00 pm
Tue 28

SaaS-Based Container Networking and Security on Amazon EKS

February 28 @ 11:00 am - 12:00 pm
Mar 20

Software Supply Chain Security

March 20 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

7 Must-Read eBooks for Security Professionals

Industry Spotlight

Anker’s Eufy Admits ‘Lie’ After TWO Months — Still no Apology
Analytics & Intelligence API Security Application Security Cloud Security Cloud Security Cybersecurity Data Security DevOps Editorial Calendar Endpoint Featured Humor Identity & Access Incident Response Industry Spotlight IOT IoT & ICS Security Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Security Operations Software Supply Chain Security Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

Anker’s Eufy Admits ‘Lie’ After TWO Months — Still no Apology

February 3, 2023 Richi Jennings | 3 days ago 0
‘Finish Him!’ US Kills Huawei With Final Tech Ban
AI and Machine Learning in Security AI and ML in Security Analytics & Intelligence Application Security Cloud Security Cloud Security Cyberlaw Cybersecurity Data Security Editorial Calendar Featured Governance, Risk & Compliance Humor Identity & Access Industry Spotlight IOT IoT & ICS Security Mobile Security Most Read This Week Network Security News Popular Post Regulatory Compliance Security Awareness Security Boulevard (Original) Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

‘Finish Him!’ US Kills Huawei With Final Tech Ban

February 1, 2023 Richi Jennings | Feb 01 0
US No-Fly List Leaked via Airline Dev Server by @_nyancrimew
Analytics & Intelligence API Security Application Security Cloud Security Cyberlaw Cybersecurity Data Security DevOps Editorial Calendar Featured Governance, Risk & Compliance Humor Identity & Access Incident Response Industry Spotlight Most Read This Week Network Security News Popular Post Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

US No-Fly List Leaked via Airline Dev Server by @_nyancrimew

January 23, 2023 Richi Jennings | Jan 23 0

Top Stories

Dutch Cops Bust ‘Exclu’ Messaging Service, Arrest 42
Analytics & Intelligence Application Security Cloud Security Cyberlaw Cybersecurity Data Security Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Incident Response Malware Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

Dutch Cops Bust ‘Exclu’ Messaging Service, Arrest 42

February 6, 2023 Richi Jennings | Yesterday 0
ChatGPT-Written Malware Will Change the Threat Landscape
AI and Machine Learning in Security AI and ML in Security Application Security Cybersecurity Editorial Calendar Featured Identity & Access Malware News Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

ChatGPT-Written Malware Will Change the Threat Landscape

February 6, 2023 Sue Poremba | Yesterday 0
Hunter Biden’s Laptop Revisited: What it Means for Cloud Storage
Cloud Security Cyberlaw Cybersecurity Data Security Featured Governance, Risk & Compliance Identity & Access News Security Boulevard (Original) Spotlight 

Hunter Biden’s Laptop Revisited: What it Means for Cloud Storage

February 6, 2023 Mark Rasch | Yesterday 0

Security Humor

Randall Munroe’s XKCD ‘Size Comparisons’

Randall Munroe’s XKCD ‘Size Comparisons’

Security Boulevard Logo White

DMCA

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: [email protected]

Useful Links

  • About
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • DMCA Compliance Statement
  • Privacy Policy

Related Sites

  • Techstrong Group
  • Container Journal
  • DevOps.com
  • Digital CxO
  • Techstrong Research
  • Techstrong TV
  • Techstrong.tv Podcast
  • DevOps Chat
  • DevOps Dozen
  • DevOps TV
Powered by Techstrong Group
Copyright © 2023 Techstrong Group Inc. All rights reserved.