Breach

Malware on Breyer Horses website for about 18 months, payment card data at risk

An undisclosed number of people who made purchases on the Breyer Horses website between March 31, 2013 and Oct. 6 are being notified that their personal information – including payment card data – may have been compromised by malware that was installed on the computer server hosting the website.

How many victims? Undisclosed. Breyer Horses is a division of Reeves International, and a Reeves International spokeperson did not immediately respond to a SCMagazine.com request for the information. 

What type of personal information? Names, addresses, website usernames and passwords, payment card account numbers, card expiration dates, and payment card security codes.

What happened? Malware was installed on the computer server hosting the Breyer Horses website and the personal information may have been compromised.

What was the response? Steps were taken to address the incident, including updating the code used to run the Breyer Horses website. All impacted individuals are being notified.

Details: Reeves International learned on Sept. 9 that unauthorized individuals installed malware on the computer server hosting the Breyer Horses website. An investigation revealed that the initial compromise appears to have occurred on March 31, 2013 and ended on Oct. 6.

Source: oag.ca.gov, “Individual Notice Letter (Reeves),” Oct. 23, 2014.

prestitial ad