GameStop data breach: Hackers offering stolen card details for sale

GameStop, an American video game, consumer electronics, and wireless services retailer has confirmed that it was at the receiving end of a recent cyber-attack that placed credit and debit cards of customers at risk.

Hackers have possibly stolen thousands of credit card and debit card details related to online transactions at GameStop between August 2016 and February 2017.

In the last few months, most of the cyber-attacks in the United States in Europe have resulted in hackers getting hold of customer data like e-mail addresses, phone numbers, gender and date of births, but widespread adoption of encryption has generally prevented financial records like credit card and debit card details from being compromised.

But hackers have finally succeeded in stealing card details of thousands of customers who purchased products online from GameStop, an American video game retailer. "GameStop recently received notification from a third party that it believed payment card data from cards used on the GameStop.com website was being offered for sale on a website," said the company.

YOU MAY ALSO LIKE:

"That day a leading security firm was engaged to investigate these claims. GameStop has and will continue to work non-stop to address this report and take appropriate measures to eradicate any issue that may be identified," it added.

The company has expressed regret for the data breach and has asked customers to 'monitor payment card account statements for unauthorized charges.' The company hasn't revealed the exact count of credit and debit cards stolen by the unnamed hackers so far.

The company has also asked victims of identity theft to contact the Federal Trade Commission or New Hampshire Attorney General's office.

Video game retailers, gaming websites, and developers have been at the receiving end of cyber-attacks since long. Last year, a cyber-attack on Epic Games, a game development company, resulted in the loss of more than 808,000 customer account details what included usernames, scrambled passwords, email addresses, IP addresses, dates of birth and details of online activity including users' posts and private messages.

It was later revealed that the company used an old version of the vBulletin forum software which featured well-known vulnerabilities. A forum for the popular mobile game Clash of Kings used the same software and was brutally hacked in July, resulting in loss of nearly 1.6 million gamers' details.

Related posts:

Another video game forum hack puts 800,000 gamers at risk

Sony makes good on PlayStation Network two-factor security promise

ICO cracks down on companies using personal data to promote online gambling