Data Security Alert.
Hackers have stolen some credit card details on both our websites over the last 3 months.
We were alerted to a breach on 5th December and took all appropriate and were rebreached. We were made aware of this on 30th January and have notified all customers at risk and the regularity bodies. If you have not received a letter or an email from us you are NOT at risk.
We have altered our payment gateway to ensure the card data has to go through a third party via secure iFrame, and we have added the very latest cyber security on to the sites along with the very latest Sucuri Malware Scanning and also a newly configured Web Application Firewall.
We have been the victim of a very sophisticated cyber-crime. We do not hold credit card details on site.
This attack bears all the hallmarks of the massive digital credit card-skimming campaign orchestrated by the threat group Magecart, which is believed to have affected over 800 e-commerce sites around the world, including most prominently Ticketmaster and BA last year.
Like physical skimmers that criminals hide in compromised Point of Sale card machines, petrol stations, and ATMs, digital card skimmers steal credit card data from unwitting customers via scripts injected into e-commerce websites to record the credit card data they enter into online payment forms.
Wiggly Wigglers and Great British Florist have put in place all recommendations so far received from forensic investigators to counteract future incursions. We take your security very seriously and we want to do the absolute best by you – our customer so as you can imagine we are working to be at the forefront of cyber security for small businesses like ours.
If you have any specific comments or questions please direct them to Heather (Managing Director) firstname.lastname@example.org