Attacks/Breaches

4/9/2018
09:20 AM
100%
0%

Best Buy the Latest Victim of Third-Party Security Breach

Retailer says customer payment and other information may have been exposed via the breach of [24]7.ai online chat provider.

Best Buy last week joined Sears Holding Corp. and Delta Airlines in disclosing that their customer data was exposed via a breach of online chat provider [24]7.ai.

The electronics retailer said its customers' payment information may have been compromised between Sept. 27 and Oct. 12, the timeframe [24]7.ai said it had suffered a security breach

"Since we were notified by [24]7.ai, we have been working to determine the extent to which Best Buy online customers' information was affected. We have done that in collaboration with our third-party vendor and have notified law enforcement. As best we can tell, only a small fraction of our overall online customer population could have been caught up in this [24]7.ai incident, whether or not they used the chat function," Best Buy said in an April 5 statement on its website. 

Best Buy's revelation follows that of Sears and Delta Airlines. Sears last week said credit card information belonging to about 100,000 of its customers may have been stolen during online transactions, and Delta said names, addresses, card numbers, CVV numbers, and card expiration dates of potentially several hundred thousand customers were exposed via the [24]7.ai breach.

Read more from Best Buy here

Interop ITX 2018

Join Dark Reading LIVE for two cybersecurity summits at Interop ITX. Learn from the industry’s most knowledgeable IT security experts. Check out the security track here. Register with Promo Code DR200 and save $200.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
4/10/2018 | 7:10:18 AM
Pardon me ..... but
It is most ironic that BestBuy is now hacked in the Federal Bureau of Investigation uses Geek Squad to do their own hacking.  You know what FBI means?   Watch HOPSCOTCH with Walter Matthau.  
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-18374
PUBLISHED: 2018-10-16
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
CVE-2018-18375
PUBLISHED: 2018-10-16
goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the rand parameter.
CVE-2018-18376
PUBLISHED: 2018-10-16
goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.
CVE-2018-18377
PUBLISHED: 2018-10-16
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to factory settings, which can be used to login using the default admin:admin credentials.
CVE-2018-17534
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.