Merrimack, New Hampshire movie theater hacked for credit card data
Technorati Tag: Security Breach
Date Reported:
12/10/08
Organization:
Zyacorp Companies, LLC.
Contractor/Consultant/Branch:
Zyacorp Entertainment Cinemagic, Merrimack
Location:
Merrimack, New Hampshire
Victims:
Customers
Number Affected:
Unknown
Types of Data:
"credit card information"
Breach Description:
"MERRIMACK, N.H. -- Hackers broke into a Merrimack movie theater's servers and stole customers' credit card information, police said Wednesday."
Reference URL:
WMUR Channel 9 News
Report Credit:
WMUR Channel 9 News
Response:
From the online source cited above:
MERRIMACK, N.H. -- Hackers broke into a Merrimack movie theater's servers and stole customers' credit card information, police said Wednesday.
[Evan] Here is a breach in which a movie theater in Merrimack, New Hampshire was targeted. This should serve as notice to people who think they may be too small or otherwise too insignificant to be targeted by fraudsters. Security through obscurity doesn't work. Everyone with something (information) that has value is a target.
Investigators said that after receiving numerous reports of fraudulent use of credit cards, police determined that a majority of the victims used their credit cards over the summer and early fall at a Zyacorp Entertainment Cinemagic Stadium movie theater in Merrimack.
[Evan] There was probably some pretty good police work involved with tying things back to Zyacorp.
Police and the Secret Service determined that a security breach was made into the company's server, allowing someone access to customers' information.
The server has since been replaced, and new security measures put in place, police said.
There was no indication how many customers' may have had their credit card information stolen.
[Evan] I wonder if Zyacorp is intending to notify?
Police said patrons of the theater should check their credit card records, and if any problems are found, contact Merrimack police at .
[Evan] If I were a customer of this movie theater and used my credit card during the timeframe in question, I would contact my bank to request a new account and card. I'm probably a little more paranoid like that.
Commentary:
I can't recall any publicized breaches involving a movie theater prior to this one. Given the few details that have been reported, there really isn't too much to comment about.
Anytime I read about credit card breaches, PCI compliance comes to mind. If I were to guess, I would guess that there is a 50/50 chance that Zyacorp is compliant. Not that compliance = secure.
Past Breaches:
Unknown
Date Reported:12/10/08
Organization:
Zyacorp Companies, LLC.
Contractor/Consultant/Branch:
Zyacorp Entertainment Cinemagic, Merrimack
Location:
Merrimack, New Hampshire
Victims:
Customers
Number Affected:
Unknown
Types of Data:
"credit card information"
Breach Description:
"MERRIMACK, N.H. -- Hackers broke into a Merrimack movie theater's servers and stole customers' credit card information, police said Wednesday."
Reference URL:
WMUR Channel 9 News
Report Credit:
WMUR Channel 9 News
Response:
From the online source cited above:
MERRIMACK, N.H. -- Hackers broke into a Merrimack movie theater's servers and stole customers' credit card information, police said Wednesday.
[Evan] Here is a breach in which a movie theater in Merrimack, New Hampshire was targeted. This should serve as notice to people who think they may be too small or otherwise too insignificant to be targeted by fraudsters. Security through obscurity doesn't work. Everyone with something (information) that has value is a target.
Investigators said that after receiving numerous reports of fraudulent use of credit cards, police determined that a majority of the victims used their credit cards over the summer and early fall at a Zyacorp Entertainment Cinemagic Stadium movie theater in Merrimack.
[Evan] There was probably some pretty good police work involved with tying things back to Zyacorp.
Police and the Secret Service determined that a security breach was made into the company's server, allowing someone access to customers' information.
The server has since been replaced, and new security measures put in place, police said.
There was no indication how many customers' may have had their credit card information stolen.
[Evan] I wonder if Zyacorp is intending to notify?
Police said patrons of the theater should check their credit card records, and if any problems are found, contact Merrimack police at .
[Evan] If I were a customer of this movie theater and used my credit card during the timeframe in question, I would contact my bank to request a new account and card. I'm probably a little more paranoid like that.
Commentary:
I can't recall any publicized breaches involving a movie theater prior to this one. Given the few details that have been reported, there really isn't too much to comment about.
Past Breaches:
Unknown
Posts Atom 1.0
Comments