Bebe Stores Faces Major Breach of Data

Jsonline.com reported on 4th December, 2014 quoting a report of Brian Krebs, a Cyber Security Reporter, as "The Bebe women's clothing and fashion store chain in the US is the latest retailer to suffer security breach of their data".

Krebs, who broke the news said that many financial institutions have verified the information of the breach and purchased some cards and checked them for a common merchant to find the source of the leak.

It is safe to assume that attackers hit the retailer Bebe Stores as all of them had this in common; the online payment system does not seem to be affected by this incident as the crooks sold the information on the magnetic strip which is acquired by planting malware on a point-of-sale system at the time of swiping the card.

Krebs says that financial institutions purchased the batch of cards for verification purposes from goodshop(.)bz, an underground shop which has been set up recently.

After analyzing the transactions, it was discovered that the compromised cards had been used at Bebe retailer between 18th and 28th November 2014 but this time interval does not suggest that the breach is over and it may continue currently.

Unfortunately, it's not yet clear about number of people getting affected by 0
this security breach nor it is known exactly how the data was obtained.

Cybercriminals normally steal information of customer's card with the help of malware which captures the information at the time of swiping of machine at the payment terminals in a store. This is how major hacks happened on Home Depot, Target, Michaels and Neiman Marcus.

Criminals can program new blank cards with stolen information to create counterfeit cards which can be used as ATM cards or to buy high-valued items at big-box stores like gift cards and iPads. Cards stolen before were used for simple items like groceries and so it's important for consumers to look for even small fraudulent charges in their account.

Customers whose credit cards have been comprised will have the guarantee of their credit credit card company but it is not necessarily same for debit cards.

» SPAMfighter News - 12/15/2014