Cyber Attack cyber

Wolff-ST, LLC

Aug 29, 2021 1 min read
Wolff-ST, LLC

The California Office of the Attorney General disclosed a data breach affecting Wolff-St, LLC (operating as Marmi) in March 2022. The incident stemmed from unauthorized malicious code injected into the marmishoes.com e-commerce website between August 29, 2021, and January 31, 2022. The breach specifically targeted customer payment card information, though the exact number of impacted individuals remains undisclosed. The compromise likely occurred via a web skimming (Magecart-style) attack, where threat actors intercepted payment details entered during checkout. While no broader personal data (e.g., names, addresses) was confirmed as exposed, the focus on financial data suggests a direct risk of fraudulent transactions for affected customers. The breach underscores vulnerabilities in third-party payment processing integrations, a common vector for cybercriminals exploiting e-commerce platforms. No ransomware or employee data was involved, and the attack’s scope appears limited to payment card theft during the specified window.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-551754

TPRM report: https://www.rankiteo.com/company/wolff-shoe-commpany

"id": "wol754082025",
"linkid": "wolff-shoe-commpany",
"type": "Cyber Attack",
"date": "8/2021",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Retail (Footwear)',
                        'name': 'Wolff-St, LLC d/b/a Marmi',
                        'type': 'Private Company'}],
 'attack_vector': 'Unauthorized code injection (website compromise)',
 'data_breach': {'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Payment card information'},
 'date_publicly_disclosed': '2022-03-16',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Wolff-St, LLC d/b/a Marmi. The breach '
                'occurred between August 29, 2021, and January 31, 2022, due '
                'to unauthorized code added to the marmishoes.com website, '
                'potentially compromising customer payment card information. '
                'The number of affected individuals is currently unknown.',
 'impact': {'data_compromised': ['payment card information'],
            'payment_information_risk': 'Yes',
            'systems_affected': ['marmishoes.com website']},
 'references': [{'date_accessed': '2022-03-16',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'title': 'Data Breach at Wolff-St, LLC d/b/a Marmi via Unauthorized Website '
          'Code',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.