14 DAY TRIAL // Shumsky, an Ohio-based promotional marketing company, is notifying customers about a data breach on the company’s e-commerce platform, eSecurity Planet reports.
The notification letter sent out to impacted clients reveals that the attackers accessed the records of 1,400 individuals. The exposed information consists of names, addresses, email addresses, credit or debit card numbers, expiration dates and CVVs.
Shumsky was notified of the breach by its e-commerce platform provider on May 16. The incident occurred on May 14 and the vulnerability exploited by the hackers was patched the next day.
“Shumsky regrets this incident, has immediately engaged with technical and legal advisors to work through the situation, and put in place updated measures to prevent this from happening again. Shumsky is also working with the payment card brands concerning the specific payment cards at issue in this incident,” the company wrote in the letter to customers.
Impacted individuals are advised to monitor their financial records for any unauthorized charges.