BreachExchange mailing list archives
QUAYSIDE PUBLISHING GROUP
From: Erica Absetz <erica () riskbasedsecurity com>
Date: Mon, 8 Jul 2013 10:11:01 -0500
http://www.atg.state.vt.us/assets/files/Quayside%20Publishing%20Consumer%20Notice.pdf June 21, 2013 ADDRESS We are writing to notify you of an incident that involved unauthorized access to our web server in which your personal information, including your credit card number, may have been stolen. We were recently made aware of this incident and have taken action to secure our servers. WHAT HAPPENED? We have established that malicious software planted by an outside source may have been able to access your credit card information, name, and address during your recent transaction with us at with one of our ecommerce sites: Qbookshop.com, Qbookshop.net, Motorbooks.com or WalterFoster.com. The estimated time this may have occurred was between April 29, 2013 and June 17, 2013. It is not certain that your cardholder information was obtained or that any attempt will be made to misuse information that was on our servers. WHAT WE HAVE DONE AND WHAT WE ARE DOING IN RESPONSE TO THIS INCIDENT. Upon becoming aware of the incident, we took immediate steps to contain the breach and initiated an investigation. Our shopping cart is temporarily suspended until we are absolutely certain that all malware has been removed from our server and we have simultaneously initiated additional security features. We have notified all of our customers who made purchases between April 29, 2013 and June 17, 2013 and whose personal information may have been taken of the unauthorized access to our server as described above, and the possible acquisition of this information by the unauthorized user. HOW CAN YOU HELP PROTECT YOURSELF? You should review your bank, credit and debit card accounts over the next twelve to twenty-four months and immediately report any suspicious activity to your bank or credit card company. To help protect yourself from the possibility of identity theft, you may consider placing a fraud alert on your credit file. A fraud alert lets creditors know to contact you before opening any new accounts or making any changes to your existing accounts. There is no charge for this service, and it is easy to request. Call any one of the three major credit bureaus. As soon as one credit bureau confirms your fraud alert, the others will be notified to place fraud alerts on your credit file. All three credit bureaus will send you your credit report free of charge for your review.Equifax Experian TransUnion www.equifax.com www.experian.com www.transunion.com 800-525-6285 888-397-3742 800-680-7289 When you receive your credit reports, study them carefully. Look for accounts you did not open. Look for inquiries from creditors that you did not initiate. Also look for personal information, such as home address and Social Security number that is not accurate. If you see anything you do not understand, call the credit reporting company at the telephone number on the report. If you find suspicious activity on your credit report, or have reason to believe your information is being misused, contact your local police or sheriff’s office and file a report of identity theft. Get a copy of the police report; many creditors want the information it contains to absolve you of any fraudulent debts. Even if you do not find any suspicious activity on your credit reports, experts recommend that you continue to monitor your credit reports and keep the fraud alert in place for at least a year. For more information about preventing identify theft, we suggest you visit the Federal Trade Commission’s identity theft Web site at http://www.consumer.ftc.gov/features/feature-0014-identity-theft. You may contact the FTC by phone at (877) 438-4338 or by mail at 600 Pennsylvania Avenue NW, Washington, DC 20580. WHERE CAN YOU FIND ADDITIONAL INFORMATION ABOUT THIS INCIDENT? If you have any questions or concerns regarding this incident, you may contact Quayside Publishing Customer Service at (800) 458-0454, from 7am to 4:30 pm CT, Monday through Friday, or by email at security () quaysidepub com. Quayside Publishing Group apologizes to you and deeply regrets the inconvenience this incident may cause you. We value the trust you place in us and we are committed to your security and satisfaction in your transactions with us. Sincerely, Joseph Cella Director of Operations Quayside Publishing Group _______________________________________________ Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss-discuss Supporters: Risk Based Security (http://www.riskbasedsecurity.com/) Risk Based Security equips organizations with security intelligence, risk management services and on-demand security solutions to establish customized risk-based programs to address information security and compliance challenges.
Current thread:
- QUAYSIDE PUBLISHING GROUP Erica Absetz (Jul 08)