[BreachExchange] Brooks Brothers Discloses Year-Long Data Breach

Audrey McNeil audrey at riskbasedsecurity.com
Mon May 15 19:10:42 EDT 2017


As massive cyber-attacks struck at least 74 countries across the globe
Friday, U.S. retailer Brooks Brothers announced it was the victim of a
separate data breach.

Brooks Brothers said Friday that customer payment information was
compromised at some of its retail locations. The hack took place over 11
months and customers who visited certain stores in the U.S. or Puerto Rico
between April 4, 2016 and March 1, 2017 could be vulnerable. Customers
affected are at risk of having had credit card data including names,
account numbers, expiration dates and verification codes stolen.

A notice from the company added that no “sensitive” personal information
was compromised, indicating social security numbers were safe. Customers
who purchased items online are not at risk.

Brooks Brothers said malicious software was installed into some of its
payment processing systems, adding the threat has since been completely

On Friday, Europe and Asia were hit by continent-wide cyber-attacks, where
hackers used technology that was reportedly developed by the National
Security Agency as an attack vehicle. U.S. retailer FedEx (FDX) announced
Friday it was included among the organizations affected by the massive
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20170515/ee157c8f/attachment.html>

More information about the BreachExchange mailing list