BevMo payment breach affects thousands, with researchers pointing to Magecart
BevMo, a California-based retailer of alcoholic beverages, is notifying some customers that a data breach affected the online store exposed credit card information used between August 2 and Sept. 26. In a notice submitted to the California attorney general’s office, BevMo says that hackers were able to install malicious code onto the company’s checkout page, skimming customer information including names, payment card numbers, expiration dates and security codes, addresses, as well as phone numbers. BevMo says the malicious code has been removed by NCR Corporation, which operates BevMo’s website. NCR, which sells point-of-sale systems and provides IT services, notified BevMo of the breach and sponsored a third-party investigation into it, according to BevMo’s notice. NCR did not respond to a request for comment. A local NBC station in the San Francisco Bay Area reported that the breach impacted 14,579 customers. BevMo has stores in California, Arizona and Washington, but ships online orders […]
The post BevMo payment breach affects thousands, with researchers pointing to Magecart appeared first on CyberScoop.
Continue reading BevMo payment breach affects thousands, with researchers pointing to Magecart