America's Thrift Stores

America's Thrift Stores made an official statement revealing that a malware-based attack had caused a data breach.

This event allowed some payment card numbers to be obtained by Eastern European criminals without authorization.

Customer names, phone numbers, emails, and addresses were not exposed in the data breach, according to the US Secret Service, but payment card numbers and expiration dates were. The software that a third-party service provider uses was exploited by the attackers.

The US Secret Service, who are presently investigating the incident, was swiftly contacted by America's Thrift Stores.

Source: https://securityaffairs.com/41030/cyber-crime/americas-thrift-stores-breach.html

"id": "AME1156101123",
"linkid": "americasthrift",
"type": "Data Leak",
"date": "10/2015",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"