BevMo data breach saw cybercriminals compromise payment card data of nearly 15,000 customers

• Intruders gained unauthorized access to the BevMo website and installed malicious code on the checkout page.
• Customers who placed orders between August 28, 2018 and September 26, 2018 are potentially affected by the breach.

Cybercriminals infiltrated BevMo’s website recently. The breach impacted nearly 15,000 customers and saw hackers compromise of both credit card and personal information of customers.

What happened?

According to a notice BevMo sent to the California Attorney General’s Office, the intruders gained unauthorized access to BevMo’s website and installed malicious code on the checkout page. The malware was designed to capture customers’ payment card information. The breach is believed to have affected customers who placed orders between August 28, 2018 and September 26, 2018.

The compromised information includes names, credit or debit card numbers, expiration dates, CVV2 codes, billing addresses, shipping addresses and phone numbers of customers.

"We believe that an unauthorized individual was able to gain access to the BevMo website and install malicious code on our checkout page. BevMo takes the privacy of our customers' personal information seriously and we deeply regret that this incident occurred,” BevMo said, NBC Bay Area reported.

Addressing the issue

Upon discovering the breach, BevMo immediately removed the malicious code and hired a third-party forensics firm to assist the firm in the investigation process.

The firm also notified the potentially affected customers, law enforcement agencies and payment card companies about the breach. BevMo said that it is working towards enhancing the security controls of its systems. It will also continue to monitor its systems to detect and prevent any further unauthorized access.