Missouri-based work wear and accessories retailer Dungarees is notifying an undisclosed number of customers that its website was attacked, and credit and debit card information may have been compromised.
How many victims? Undisclosed.
What type of personal information? Names, billing and mailing addresses, email addresses, credit and debit card numbers, card expiration dates and CVVs.
What happened? The Dungarees website was attacked, and payment card information may have been compromised.
What was the response? The website was secured, and further safeguards have been put in place. All potentially impacted customers are being notified, and offered identity theft protection services.
Details: Dungarees first became aware of a possible breach on May 15, and later learned that additional manipulations were made to the website that were not apparent on that date. Customer information associated with orders placed on the website between March 26 and June 5 may have been affected.
Quote: “After a recent migration of our website from one server to another, Dungarees was a victim of an illegal hack from a foreign entity, which may have resulted in a compromise to your credit card or debit card,” a notification letter said.
Source: oag.ca.gov, “Generic Consumer Notice,” June 19, 2015.