Electronics retailer Small Dog Electronics has suffered from a systems breach that left 3000 customers’ credit card details compromised.
The data theft, which left the credit card details exposed from late December to almost the end of January, used a security hole in the in-house web application that had been developed to manage Smalldog’s ecommerce system.
Don Mayer, CEO of Small Dog Electronics, explained that the company is PCI compliant, and that it had been subjected to a penetration test by a third party, which he would not name. The flaw in the code has now been rectified, and Small Dog is investigating the issue with the pen tester, added Mayer, who did not know what language the ecommerce system had been written in.
Read more on Infosecurity.
According to Infosecurity-US, the company did not offer free credit monitoring in its notification to those affected, but will provide it or offer it if customers call and request it.