Forever 21 Security Breach: Customer Credit Card Data Stolen
Attivo Networks Blogs

Forever 21 Security Breach: Customer Credit Card Data Stolen

Fashion retailer Forever 21 reported Tuesday that it suffered a security breach that allowed a hacker to gain unauthorized access to credit card information from a number of the company’s retail locations.

According to Forever 21, a third party group notified the company of the possibility that there was “unauthorized access to data from payment cards that were used at certain Forever 21 stores.” The company then launched its own investigation into the matter and discovered that some customer credit card data may have been exposed.

Forever 21 focused its investigation, for which it retained the help of a “leading security and forensics firm,” on credit card transactions that took place in its retail stores between March and October 2017—though the company noted its investigation is ongoing and it is “too early to provide further details.”

What the company could disclose was that at least some transactions during the timeframe it investigated were exposed. Forever 21 implemented encryption and tokenization solutions in 2015 that are designed to protect transaction data on its point of sales machines in its stores. However, the company admitted that not all of its stores had the security layers in operation during the time of the breach.

For the time being, Forever 21 is not disclosing what locations were affected or how many customers may have had their card compromised. Forever 21 operates more than 815 stores in 57 countries.

“We expect to provide an additional notice as we get further clarity on the specific stores and timeframes that may have been involved,” the company said. The company has not provided any additional resources for consumers to determine if they may have been affected.

Read more>>>

Share on:

Free Active Directory Assessment

Get Visibility Into Privilege And Service Account Exposure

For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.

Try Our Endpoint Detection Net (EDN) for Free

FAST AND EASY

Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.

Newsletter Signup

    Yes, please opt me in to receive your quarterly newsletter, event invitations, and product updates.

    I understand that I can opt out at any time, and can refer to Attivo Networks Privacy Policy for more information.
  • This field is for validation purposes and should be left unchanged.

ADSecure 90-Day Free Trial

GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY

  • Hide and deny access to AD objects
  • Get alerted on unauthorized queries
  • Attack details easily viewable in dashboard
  • Your data remains on-premise

RSS

Leave a Comment

Your email address will not be published. Required fields are marked *

seven − two =

Ready to find out what’s lurking in your network?

Scroll to Top