BWX's Flora & Fauna business has been hacked.
The credit card details of around 2500 shoppers likely to have been exposed.
A malicious code unlawfully inserted into the Flora & Fauna website” have resulted in customer credit card numbers and expiry dates being transmitted to an unauthorized third party.
No other personal information such as customer names, CVV codes, passwords or other information entered at checkout had been accessed.
TPRM report: https://scoringcyber.rankiteo.com/company/bwx-limited
"id": "bwx121341122",
"linkid": "bwx-limited",
"type": "Cyber Attack",
"date": "11/2022",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '2500',
'industry': 'Retail',
'name': 'BWX',
'type': 'Corporation'}],
'attack_vector': 'Malicious Code Injection',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '2500',
'personally_identifiable_information': 'No',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Credit Card Numbers',
'Expiry Dates']},
'description': "BWX's Flora & Fauna business has been hacked. The credit card "
'details of around 2500 shoppers likely to have been exposed. '
'A malicious code unlawfully inserted into the Flora & Fauna '
'website have resulted in customer credit card numbers and '
'expiry dates being transmitted to an unauthorized third '
'party. No other personal information such as customer names, '
'CVV codes, passwords or other information entered at checkout '
'had been accessed.',
'impact': {'data_compromised': ['Credit Card Numbers', 'Expiry Dates'],
'payment_information_risk': 'High',
'systems_affected': ['Flora & Fauna Website']},
'title': "BWX's Flora & Fauna Credit Card Data Breach",
'type': 'Data Breach',
'vulnerability_exploited': 'Website Vulnerability'}