Garmin Southern Africa (Garmin SA) has disclosed in a series of notifications sent to its customers that payment and sensitive personal information were stolen from orders placed on the shop.garmin.co.za shopping portal.
“We recently discovered theft of customer data from orders placed through shop.garmin.co.za (operated by Garmin South Africa) that compromised your personal data related to an order that you placed through the website,” said Jennifer Van Niekerk, South Africa Managing Director. The compromised data was limited to only Garmin’s South Africa site, and contained payment information, including the number, expiration date and CVV code for your payment card, along with your first and last name, physical address, phone number and email address.”
While the cause of the breach is not mentioned in the notification email to the impacted Garmin SA customers, there are signs that the shop.garmin.co.za portal was the victim of a Magecart group.
Experts Comments
Dot Your Expert Comments
Only for registered and approved experts. Please register before providing comments. Register here
Linkedin Message
@Peter Draper, Technical Director, EMEA, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
" One of the key elements of this attack is that the bad actors need to send the data to their own servers to actually collect the information. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/garmin-sa-shopping-portal-breach-leads-to-payment-data-theft
Facebook Message
@Peter Draper, Technical Director, EMEA, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
" One of the key elements of this attack is that the bad actors need to send the data to their own servers to actually collect the information. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/garmin-sa-shopping-portal-breach-leads-to-payment-data-theft