[ISN] Montgomery Ward kept the Internet security breach quiet until June

From: InfoSec News <alerts_at_private>
Date: Wed, 2 Jul 2008 03:06:47 -0500 (CDT)

By Mary Couchman
June 28, 2008

Montgomery Ward Direct Marketing Services CEO, David Milgrom, said the 
financial company Citigroup detected the computer invasion in December. 
By going through HomeVisions.com, another Direct Marketing Services 
site, hackers had plundered the database that holds account information 
for all the company's retail properties.

Milgrom said the company immediately informed its payment processor 
including Visa and MasterCard of the hacker breach. The company then 
responded to security measures which included a report to the U.S. 
Secret Service.

Retailers that fail to comply with proper security measures can be hit 
with fines or be sued by affected customers.

Milgrom said Direct Marketing Services now plans to contact consumers.

The online hack was unknown until June when Affinion Group Inc.'s 
CardCops, a group of investigators who track payment-card theft for 
financial institutions, were CardCops spotted hackers touting the sale 
of 200,000 payment cards belonging to one merchant.


Attend Black Hat USA, August 2-7 in Las Vegas, 
the world's premier technical event for ICT security experts.
Featuring 40 hands-on training courses and 80 Briefings 
presentations with lots of new content and new tools.
Network with 4,000 delegates from 50 nations.  
Visit product displays by 30 top sponsors in 
a relaxed setting. http://www.blackhat.com
Received on Wed Jul 02 2008 - 01:06:47 PDT

This archive was generated by hypermail 2.2.0 : Wed Jul 02 2008 - 07:08:45 PDT