Park ‘N Fly breached


Late last year, Kreb­sOnSe­cu­rity wrote that two huge swaths of credit card num­bers put up for sale in the cy­ber­crime un­der­ground had likely been stolen from At­lanta-based Park ‘N Fly and from OneS­topPark­, com­pet­ing air­port park­ing ser­vices that lets cus­tomers re­serve spots in ad­vance of travel via In­ter­net reser­va­tion sys­tems. This week, both com­pa­nies con­firmed that they had in­deed suf­fered a breach.

In a state­ment re­leased, the com­pany ac­knowl­edged that its site was hacked and leak­ing credit card data, but stopped short of say­ing how long the breach per­sisted or how many cus­tomers may have been af­fected.

The state­ment reads: “Park ‘N Fly has be­come aware of a se­cu­rity com­pro­mise in­volv­ing pay­ment card data pro­cessed through its e-com­merce web­site. Park ‘N Fly has been work­ing con­tin­u­ously to un­der­stand the na­ture and scope of the in­ci­dent, and has en­gaged third-party data foren­sics ex­perts to as­sist with its in­ves­ti­ga­tion. The data com­pro­mise has been con­tained. While the in­ves­ti­ga­tion is on­go­ing, it has been determined that the se­cu­rity of some data from cer­tain pay­ment cards that were used to make reser­va­tions through Park ‘N Fly e-com­merce web­site is at risk. The data po­ten­tially at risk in­cludes the card num­ber, card­holder’s name and billing ad­dress, card ex­pi­ra­tion date, and CVV code. Other loy­alty cus­tomer data po­ten­tially at risk in­cludes e-mail ad­dresses, Park ‘N Fly pass­words and tele­phone num­bers.”

Newspapers in English

Newspapers from India

© PressReader. All rights reserved.