United Parcel Service infected with credential stealing malware

Security

by Jimmy Nicholls| 21 August 2014

Government warning led to company investigation of the virus.

Fifty-one retail outlets owned the United Parcel Service (UPS) in the US have suffered a data breach potentially exposing payment data.

A government notice to several firms led to the detection of the virus, which may have allowed hackers to collect customer names, postal and email addresses, and card information between January 20 and August 11.

Tim Davis, president of the UPS Store, said: "As soon as we became aware of the potential malware intrusion, we deployed extensive resources to quickly address and eliminate this issue.

"Our customers can be assured that we have identified and fully contained the incident."

Not all information may have been exposed for each customer, and the firm has not received evidence of fraud linked to the hack.

Infections are said to be confined to individual stores, which each run independent networks unconnected to other franchises.

"I understand this type of incident can be disruptive and cause frustration," Davis added. "I apologise for any anxiety this may have caused our customers."

Customers whose information has been exposed are being offered free identity protection and credit monitoring services.

Comments
Post a comment

Comments may be moderated for spam, obscenities or defamation.

Join our network

754 people like this.
0 people follow this.

Security Intelligence

Privcy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.