Over Half Million Debit and Credit Card Files Exposed
- 3
- Add a Comment
It is a data breach of significant magnitude - over a half million files were breached. And the breach extended from March 12 to June 8. Hackers had access for almost three months:
“Web services provider Network Solutions disclosed Friday that hackers broke into its servers and stole information on more than 573,000 debit and credit card accounts from its customers over the past three months.“
link: Network Solutions Says Hackers Accessed 573,000 Card Accounts
Those data may have changed hands many times by now. Even if a portion of the breached files were marketed for a low sum for each account, the theft may have generated millions for the hackers. Subsequently, there is practically no upper limit to the damage that may have been done to accounts.
Network Solutions is offering credit monitoring for those accounts that may have been breached. This has the appearance of some responsibility. However, there is the onerous, time consuming task of attempting to contact all the people who have had their personal financial information breached. Meanwhile, supposedly secure financial information is in the hands of criminals - and the end-point victim, the consumer, may have no idea that theft is being perpetrated in his or her name. And yes, that compromised data could be yours.
Catherine Forsythe
related article: Save Your Computer from Malware - and Naked Journalists!
3 Comments
AppFail
July 25th, 2009
at 4:13pm
I wrote about this as well, explained some of the technical details and outlined steps developers can take to lessen the risk of a similar indecent on their own sites.
http://appfail.com/read/160/Network-Solutions-data-breach-goes-undetected-for-months/
ValT
July 26th, 2009
at 1:13am
Absolutely without a doubt in my mind, this is gross negligence! Encryption is more important now than ever before!
Miguel Ramos
July 26th, 2009
at 4:41pm
Hi Catherine, I work for Network Solutions and want to reassure that we are doing what it takes to safeguard our customers’ best interest. The code has been promptly removed from the system and we have no reports or other reasons to believe that any credit card account information has been misused and, under established practice, credit card issuing companies generally will not hold our merchants’ customers liable for any fraudulent purchases made using their credit card account numbers that are reported in a timely way to the issuer. We are posting frequent updates on http://www.careandprotect.com addressing our customers’ concerns in real time.