Credit card details of over 1.7 million customers have been exposed in a recent cyber attack targeting an electronic payments gateway. The breach potentially compromised sensitive information, including credit card numbers, expiration dates, names, and addresses.
SlimCD, a software platform that facilitates electronic payments for merchants in the United States and Canada, has confirmed the breach. The company acknowledged the situation on Reddit, revealing that the attack likely occurred in early June 2024, with unauthorized access to credit card information between June 14th and June 15th.
The breach was first detected on August 8, 2024, when SlimCD launched an internal investigation. The findings suggest that while the hackers accessed or possibly stole the information, it has not been used for fraudulent activities online so far. However, there remains a concern that the stolen data could be exploited for phishing or identity theft in the future.
The Maine Attorney General has been notified of the incident, and a notification will soon be sent to the affected 1.69 million customers via email.
SlimCD advises its customers to monitor their credit card transactions closely over the coming months and report any unauthorized charges to their bank or card issuer immediately. It is also recommended to change PINs and passwords and enable two-factor authentication to enhance security. Implementing these measures can significantly reduce the risk of further issues.
