Breach, Malware

Malware attack compromises over 200K SelectBlinds customers

Share
Security breach, system hacked alert with red broken padlock icon showing unsecure data under cyberattack, vulnerable access, compromised password, virus infection, internet network with binary code

(Adobe Stock)

SelectBlinds, a U.S. windows blinds and shades seller, had information from over 200,000 customers exfiltrated following a malware attack against its website since early January, reports The Record, a news site by cybersecurity firm Recorded Future.

Such malware compromise, which was only identified in late September, has impacted login information, names, phone numbers, emails, shipping and billing addresses, and payment card details with CVV codes and expiration dates belonging to individuals who had visited the SelectBlinds website's check-out page, said the company in breach notifications filed with California and Maine regulators. Aside from locking affected accounts, individuals impacted by the incident have also been urged by the company to immediately replace login credentials for other sites using the same passwords. SelectBlinds' attack disclosure comes after a Recorded Future report detailing the sale of 15 million stolen card records on carding shops across the dark web.

Related

Over 21K Equinox patients, staff impacted by LockBit-claimed attack

Threat actors who infiltrated Equinox's systems on Apr. 29 were able to exfiltrate digital files containing individuals' names, birthdates, addresses, Social Security numbers, passport numbers, driver's license or other government identification numbers, health insurance information, financial account details, treatment and diagnosis data, and/or medication details.

Alleged Finastra breach under investigation

Infiltration of Finastra's internally hosted file transfer platform, which was only discovered earlier this month, was likely conducted through stolen credentials and has resulted in the exfiltration of customer information.

Email breach hits Library of Congress

While email correspondences between the Congressional Research Service and other Library staff and certain congressional offices between January and September had been compromised, such an intrusion — which was initially reported by NBC News — did not affect the House and Senate's IT networks and respective email accounts.

Related Terms

AdwareAttack Vector

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.