A security breach has exposed the financial and personal data of Gamestop's online customers.
Clients received postal letters from the corporation, which also stated that the credit card or bank card information of an unspecified number of online clients had been compromised.
Hackers gained access to names, addresses, card numbers, expiration dates, and the three-digit card verification values (CVV2).
The corporation claims that neither retail customers nor the PoS systems at the company stores were compromised by the security vulnerability."
Source: https://securityaffairs.com/59917/data-breach/gamestop-hacked.html
TPRM report: https://scoringcyber.rankiteo.com/company/gamestop
"id": "gam959261123",
"linkid": "gamestop",
"type": "Breach",
"date": "06/2017",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Retail',
'name': 'Gamestop',
'type': 'Corporation'}],
'customer_advisories': 'Postal letters to clients',
'data_breach': {'personally_identifiable_information': ['Names',
'Addresses',
'Card Numbers',
'Expiration Dates',
'Three-digit Card '
'Verification Values '
'(CVV2)'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Financial Data',
'Personal Data']},
'description': 'A security breach has exposed the financial and personal data '
"of Gamestop's online customers.",
'impact': {'data_compromised': ['Names',
'Addresses',
'Card Numbers',
'Expiration Dates',
'Three-digit Card Verification Values '
'(CVV2)']},
'motivation': 'Data Theft',
'response': {'communication_strategy': 'Postal letters to clients'},
'threat_actor': 'Hackers',
'title': 'Gamestop Data Breach',
'type': 'Data Breach'}