Arizona-based Gingerbread Shed Corporation is notifying customers that an unauthorized individual gained access to its systems for roughly three months and may have compromised about 50,000 transactions, as well as other data.
How many victims? About 50,000 transactions, a spokesperson told SCMagazine.com in an email correspondence.
What type of personal information? Names, addresses, phone numbers, email addresses, payment card information and usernames and passwords for website accounts.
What happened? For roughly three months, an unauthorized individual gained access to Gingerbread Shed's systems and could have compromised about 50,000 transactions, as well as other customer data.
What was the response? Gingerbread Shed began a forensic investigation and notified law enforcement officials. Gingerbread Shed has taken security measures to prevent similar attacks. All impacted individuals are being notified.
Details: Gingerbread Shed learned in April that an unauthorized individual had access to its systems from late November 2013 to mid-February.
Source: oag.ca.gov, “Sample Consumer Notification,” May 5, 2014.