1 min read

Cash Converters breached; hackers hold data for ransom

Luana PASCU

November 17, 2017

Cash Converters breached; hackers hold data for ransom

Cash Converters, the British second-hand shop that enables users to trade goods and resell to others, announced in an email to customers on Thursday that it detected unauthorized third-party access to its data, the BBC writes.

‘Please be reassured that, alongside the relevant authorities, we are investigating this as a matter of urgency and priority. We are also actively implementing measures to ensure that this cannot happen again,” reads the email.

“Although some details relating to the cybersecurity breach remain confidential while Cash Converters works with the relevant authorities, we will continue to provide as much detail as possible as it becomes available. The current web shop site was independently and thoroughly security tested as part of its development process. We have no reason to believe it has any vulnerability, however additional testing is being completed to get assurance of this.”

Hackers accessed usernames, addresses, passwords and purchase histories, but the data breach affected an old website version that was replaced a few months ago. No credit card data was breached, the company added, without revealing the number of affected accounts. Clients who made in-store purchases or shopped through the new platform were not affected by the breach.

According to Reuters, Cash Converters also received a ransom demand from hackers threatening to release the information online if the payment was not followed through.

“Our customers truly are at the heart of everything we do, and we are disappointed that they may have been affected,” the company said in a statement.

“We apologize for this situation and are taking immediate action to address it.”

Because the time of holiday scams and malware campaigns has arrived, US-CERT has issued a warning that users should pay close attention on the internet, especially when making online payments during the holiday season. Malware-infected emails and ecards, fake ads and social media posts could lead to security breaches, identity theft and financial loss.

tags


Author



Right now

Top posts

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read
The Top Five Security Risks Smartphone Users Face Today

The Top Five Security Risks Smartphone Users Face Today

July 02, 2021

4 min read
Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

July 02, 2021

3 min read
Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

June 30, 2021

2 min read
Mobile security threats: reality or myth?

Mobile security threats: reality or myth?

June 13, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands
Graham CLULEY

July 23, 2021

3 min read
Homoglyph domains used in BEC scams shut down by Microsoft Homoglyph domains used in BEC scams shut down by Microsoft
Graham CLULEY

July 22, 2021

3 min read
China Sets Up New Worrying Vulnerability Disclosure Rules China Sets Up New Worrying Vulnerability Disclosure Rules
Silviu STAHIE

July 20, 2021

1 min read