It has been reported that clothing giant J.Crew has said an unknown number of customers had their online accounts accessed “by an unauthorised party” almost a year ago, but is only now disclosing the incident. The company said in a filing on Tuesday with the California attorney general that the hacker gained access to the customer accounts in or around April 2019. According to the letter, the hacker obtained information found in the customer’s online account — including card types, the last four digits of card payment numbers, expiration dates, and associated billing addresses. Online accounts also store the customer’s order numbers, shipping confirmation numbers, and shipment statuses.
Experts Comments
Linkedin Message
@Jason Kent, Hacker in Residence, provides expert commentary at @Information Security Buzz.
"The attacker generates a list of usernames that work on an application...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Facebook Message
@Jason Kent, Hacker in Residence, provides expert commentary at @Information Security Buzz.
"The attacker generates a list of usernames that work on an application...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Linkedin Message
@Robert Capps, VP , provides expert commentary at @Information Security Buzz.
"The number of these credential stuffing attempts that have correct username and passwords is low...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Facebook Message
@Robert Capps, VP , provides expert commentary at @Information Security Buzz.
"The number of these credential stuffing attempts that have correct username and passwords is low...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Linkedin Message
@Jonathan Knudsen, Senior Security Strategist , provides expert commentary at @Information Security Buzz.
"Don’t re-use the same password across multiple sites...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Facebook Message
@Jonathan Knudsen, Senior Security Strategist , provides expert commentary at @Information Security Buzz.
"Don’t re-use the same password across multiple sites...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Robert Capps, VP , provides expert commentary at @Information Security Buzz.
"With the potentially-stolen customer data, bad actors can impersonate them online. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments
Facebook Message
@Robert Capps, VP , provides expert commentary at @Information Security Buzz.
"With the potentially-stolen customer data, bad actors can impersonate them online. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/clothing-company-j-crew-says-a-hacker-accessed-customer-accounts-experts-comments