iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
A US-based electronic payment service provider has quietly disclosed that the data of almost 1.7 million people was exfiltrated in a cyber attack, including credit card information.
Slim CD, a credit card merchant that describes itself as a “processing gateway that handles electronic payments, including credit card payments for US and Canadian based merchants”, posted a data breach notice on its website revealing that on 15 June 2024, it discovered that threat actors had breached its systems for almost a year and exfiltrated customer data.
“[Slim CD’s] investigation identified unauthorised system access between August 17, 2023, and June 15, 2024. That access may have enabled an unauthorised actor to view or obtain certain credit card information between June 14, 2024, and June 15, 2024,” it said.
The investigation also unveiled that potentially impacted data included names, addresses, credit card numbers and card expiration dates.
In a filing submitted to the Office of the Maine Attorney General, the company disclosed that 1,693,000 people were affected.
“Slim CD takes the confidentiality, privacy, and security of information in its possession very seriously. Upon discovery of this incident, Slim CD quickly commenced a thorough investigation and took steps to implement additional safeguards and review our policies and procedures relating to data privacy and security,” the company said.
Additionally, Slim CD said it reached out to federal law enforcement and relevant authorities as required by law.
“Slim CD has been working diligently to provide affected individuals with accurate and complete notice, and on September 6, 2024, Slim CD began sending emails [to] potentially affected individuals,” it said.
At this stage, no threat actor has been publicly named or has claimed responsibility for the matter. Additionally, the nature of the incident is still unknown, but the type of data stolen could lead to cases of fraud, identity theft or more, meaning the data could potentially be put up for sale for a lucrative price.
Cyber Daily has reached out to Slim CD CEO Sami Slim for additional commentary.
Be the first to hear the latest developments in the cyber industry.
