LaCie Admits Year-Long Credit Card Data Breach

The payment industry was shaken to the core with the Target-Neiman Marcus credit card processing systems hack in late 2013; millions of users saw their personal information compromised and their credit card numbers sold online for cloning. The scandal unleashed a wave of cries for reform in the credit card processing systems industry, and the end of the outdated and decades-long magnetic strip cards.

 

Now, however, popular hard drive manufacturer Seagate-LaCie has unveiled that for most of the past year, they have been victim to a hacker at their online store, which has exposed credit card numbers and contact information for many customers. Perhaps more troubling is that it took the vendor almost a month to admit to the breach after it was first reported online.

 

ColdFusion Vulnerability

The hack appears to exploit vulnerabilities in Adobe’s ColdFusion software, which was also responsible for a break-in at Adobe itself in which tens of millions of customer records including credit card data and source code for Adobe’s leading software was stolen. In fact, many experts believe that it was the same group of hackers that performed the LaCie break in, as well as attacks at Smuckers and at credit card processing systems vendor SecurePay.

 

Protecting Your Data

It is uncertain as yet just how many card numbers and how much information was compromised; the company has not revealed this information yet, but given that the breach has been going on for the past year, it is possible that millions of customers have been affected by the attacks. The company claims that they were only made aware of the breach by the FBI on March 19. The company is advising that all customers who have purchased hard drives in the past year should take precautions to protect their data. So far there have been no reports of stolen credit cards, but the malware has been confirmed, so the company is advising that it might be wise to replace cards and reset passwords.