Establishing Digital Trust: Don't Sacrifice Security for Convenience
Footwear manufacturer Danner recently began notifying an undisclosed number of customers that on December 11, 2013, the company discovered that an unauthorized person had compromised a computer used to operate Danner's Web site (h/t DataBreaches.net).
On November 28, 2013, the attacker had installed malware designed to capture the information entered by customers who made purchases on Danner's Web site, including their names, addresses, e-mail addresses, credit or debit card numbers, expiration dates and CVV codes.
While the company wasn't able to determine whether the attacker actually accessed any data, Danner is notifying everyone who made a purchase on the Web site between November 28, 2013 and December 11, 2013.
No credit protection services are being offered to those affected, but all recipients of the notification letter are being advised to monitor their account statements and credit reports for any unauthorized activity.
"We want to assure you that we are committed to the security of your personal information and are taking this matter seriously," the company wrote in the notification letter [PDF]. "We have conducted an internal review of our practices and procedures and are updating our system protections."