OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
[Dataloss] 30,000 Dutch Credit card details stolen

From: Henry Brown (hbrownknology.net)
Date: Tue Nov 27 2007 - 05:37:27 CST


http://www.first.org/newsroom/globalsecurity/176842.html

30,000 Dutch Telsell-customer creditcard details stolen from Telsell
computers, Telsell claims not their responsibility

Customers of the television-sales organization TelSell can not only
tele-shop while relaxing in their lazy chair, they also have a good
chance to be robbed, while in that same chair.

Earlier this year the details of over 30,000 creditcards have been
stolen from Telsell’s computersystems.

The details are from customers who in the past ordered Telsell products,
including slimming belts, fitness equipment and figure-correction
underwear. With the card details cybercriminals can relatively easy make
illegal transfers, where the victims are served the bill.

The Dutch company Telsell has been aware of this theft since 6 months,
but never informed those customers at risk. The company decided take the
credit card organization, looking at Telsell for recovery of the stolen
amounts, to court. This has been discovered in procedural legal
documents, obtained by the Telegraaf, the largest Dutch newspaper.

According to these papers, last May hackers managed to break into, and
compromize Telsell’s computersystems, copying over fifteenthousand Visa
card details and around sixteenthousand Mastercard details.

What is unusual is that Telsell decided not to fore-warn its possibly
affected customers. If they had been warned in time, customers could
have checked their creditcard accounts for irregularities. Anyone who
does not notice illegitimate transfers in their own account statements
timely, will not receive any financial compensation.

The even more unsual explanation by Telsell is: “It is not our
resonsibility to warn our customers” Yesterday the company Telsell
refused to comment. Also it is not clear whether sufficient measures
have been taken to avoid a repeat of the computer systems compromize.

Original article in Dutch

http://www.telegraaf.nl/binnenland/2622436/Telsell-klanten_dupe_roof.html?p=3,1

_______________________________________________
Dataloss Mailing List (datalossattrition.org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml