Rail Europe North America Company was hacked, customers payment card data leaks
Rail Europe North America (RENA) recently informed its customers that due to security flaws on its website, it has been infected with malicious software, causing unauthorized remote attackers to fully access the website. On customer data.
According to the contents of the notification, RENA learned that one of the main functions of the affected websites is for customers to purchase train tickets. This means that in addition to sensitive personal information about customers, such as name, gender, shipping address, invoice address, phone number, email address, and username and password, the compromised data also relates to payment cards (credit cards or Debit card data, such as card number, expiration date, and CVV code.
On February 16 this year, RENA received an unusual report from the bank. After a preliminary investigation, it was discovered that from November 29, 2017, someone had access to the IT platform of his e-commerce site without authorization, and this malicious invasion threatened the security of his customers’ personal information.
RENA immediately processed the compromised server offline and hired an information security expert to assist with forensic analysis, system recovery, and security hardening. Despite this, malware has been in existence from November 29, 2017, to February 16, 2018, which means that this data breach has lasted for at least three months.
Currently, RENA stated that it has used secure code to replace and rebuild all damaged systems and removed any potentially untrusted components. The IT staff also changed the password for all systems and applications, improved security controls, and updated digital certificates.
“RENA has also provided notice to the credit card brands and our credit/debit card transaction processors.” continues the notice.
“In addition, we are offering identity theft protection services through ID Experts®, the data breach andrecovery services expert, to provide you with MyIDCare™. MyIDCare services include: 12 months of Credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, exclusive educational materials and fully managed id theft recovery services.“
Source: securityaffairs
