recommended reading

Threatwatch

GameStop Confirms Payment Info Breach for Online Shoppers

Credential-stealing malware

GameStop recently notified customers their personal information and payment methods may have been compromised in a data breach the gaming retailer previously acknowledged in April.

An undisclosed number of customers received mailed notifications in June, warning them the company’s online shop may have been breached, Threatpost reported. In addition to the payment card numbers, expiration dates and verification numbers, information, customers’ names and addresses may have been stolen between Aug. 10, 2016 and Feb. 9, 2017.

GameStop acknowledged a third-party notified it of the breach. In April, GameStop told Krebs On Security it was investigating reports that payment information from its site was for sale on a website.

sector

Retailer

reported

June 9, 2017

reported by

Threatpost

number affected

Unknown

location of breach

Unknown

perpetrators

Unknown

location of perpetrators

Unknown

date breach occurred

August 10, 2016

date breach detected

April 2017