cyber Ransomware

The Buckle, Inc.

May 11, 2023 1 min read
The Buckle, Inc.

The Buckle, Inc. was a victim of a security incident in which a criminal entity accessed some guest credit card information.

Buckle identified malware on certain Buckle retail store location point-of-sale (POS) systems.

The compromised information included the cardholder's name in addition to the card number and expiration date).

There was no indication that other guest information was collected and no indication that any information submitted through Buckle.com was affected.

They immediately launched a thorough investigation and engaged leading third-party forensic experts to review systems and secure the affected part of our network.

Source: https://www.databreaches.net/the-buckle-inc-notification-of-security-incident-at-some-retail-stores/

TPRM report: https://scoringcyber.rankiteo.com/company/the-buckle

"id": "the1332311022",
"linkid": "the-buckle",
"type": "Breach",
"date": "06/2017",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Retail',
                        'name': 'The Buckle, Inc.',
                        'type': 'Retailer'}],
 'attack_vector': 'Malware',
 'data_breach': {'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ["Cardholder's Name",
                                              'Card Number',
                                              'Expiration Date']},
 'description': 'The Buckle, Inc. experienced a security incident where a '
                'criminal entity accessed guest credit card information via '
                'malware on certain point-of-sale (POS) systems at retail '
                'store locations.',
 'impact': {'data_compromised': ["Cardholder's Name",
                                 'Card Number',
                                 'Expiration Date'],
            'payment_information_risk': 'High',
            'systems_affected': ['Point-of-Sale (POS) Systems']},
 'initial_access_broker': {'entry_point': 'Point-of-Sale (POS) Systems'},
 'motivation': 'Unauthorized Access to Credit Card Information',
 'response': {'remediation_measures': 'Review and Secure Affected Network',
              'third_party_assistance': ['Leading Third-Party Forensic '
                                         'Experts']},
 'threat_actor': 'Criminal Entity',
 'title': 'Credit Card Data Breach at The Buckle, Inc.',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Point-of-Sale (POS) Systems'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.