cyber Breach

Detroit Zoo

May 3, 2022 1 min read
Detroit Zoo

Service Systems Associates (SSA), a third-party vendor that handles retail and concession payments for Detroit Zoo and other zoos in Michigan suffered a point-of-sale (POS) breach.

The breach compromised the Customer names, credit and debit card numbers, expiration dates, and three-digit CVV security codes of the customers.

The SSA investigated the incident with law enforcement and the forensic investigator firm Sikich and immediately removed the malware and informed the zoos about the incident.

Source: https://www.scmagazine.com/news/breach/detroit-zoo-eight-others-across-the-county-experience-pos-breach

TPRM report: https://scoringcyber.rankiteo.com/company/detroit-zoo

"id": "det203625422",
"linkid": "detroit-zoo",
"type": "Breach",
"date": "07/2015",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"
{'affected_entities': [{'industry': 'Retail and Concession Payments',
                        'location': 'Michigan',
                        'name': 'Service Systems Associates',
                        'type': 'Third-party Vendor'},
                       {'industry': 'Tourism and Entertainment',
                        'location': 'Michigan',
                        'name': 'Detroit Zoo',
                        'type': 'Zoo'},
                       {'industry': 'Tourism and Entertainment',
                        'location': 'Michigan',
                        'name': 'Other zoos in Michigan',
                        'type': 'Zoo'}],
 'attack_vector': 'Point-of-Sale (POS) Malware',
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Customer names',
                                              'Credit and debit card numbers',
                                              'Expiration dates',
                                              'Three-digit CVV security '
                                              'codes']},
 'description': 'Service Systems Associates (SSA), a third-party vendor that '
                'handles retail and concession payments for Detroit Zoo and '
                'other zoos in Michigan suffered a point-of-sale (POS) breach. '
                'The breach compromised the Customer names, credit and debit '
                'card numbers, expiration dates, and three-digit CVV security '
                'codes of the customers.',
 'impact': {'data_compromised': ['Customer names',
                                 'Credit and debit card numbers',
                                 'Expiration dates',
                                 'Three-digit CVV security codes'],
            'payment_information_risk': 'High'},
 'investigation_status': 'Completed',
 'motivation': 'Financial Gain',
 'response': {'communication_strategy': ['Informed the zoos about the '
                                         'incident'],
              'containment_measures': ['Malware removal'],
              'incident_response_plan_activated': True,
              'law_enforcement_notified': True,
              'third_party_assistance': ['Sikich']},
 'title': 'POS Breach at Service Systems Associates',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.