Saks Fifth Avenue, Lord & Taylor
April 1, 2018: The owner of retail stores Saks Fifth Avenue and Lord & Taylor, Hudson’s Bay Company (HBC), confirmed that hackers stole the data of more than 5 million credit and debit cards. This hack was discovered by cyber security firm, Gemini Advisory. Gemini’s analysis shows that the breach of payment systems began in May 2017. Fallout from the data breach is just now being realized, as those responsible have begun selling customers’ credit and debit card information on the Dark Web. 125,000 payment cards have been released into the wild so far with the rest likely to become available in the coming months. HBC said it is “taking steps to contain it”.
April 2, 2018: The St. Louis-based, bakery-cafe Panera Bread has left the information of up to 37 million customers in plain text accessible from its website. Customers who have created an account to order online can expect that their full name, email and physical address, phone number, birthday, and last four digits of credit or debit card have been compromised. It appears that the company’s catering application was also impacted. Panera was notified of this vulnerability in August of 2017 yet, according to reports, did not address the issue until today. There are more than 2,100 Panera locations in the United States and Canada.