Customers who ordered from one of Quayside Publishing‘s web sites since the end of April recently received a notice of a breach that was reported to the Vermont Attorney General’s Office:
We are writing to notify you of an incident that involved unauthorized access to our web server in which your personal information, including your credit card number, may have been stolen. We were recently made aware of this incident and have taken action to secure our servers.
WHAT HAPPENED?
We have established that malicious software planted by an outside source may have been able to access your credit card information, name, and address during your recent transaction with us at with one of our ecommerce sites: Qbookshop.com, Qbookshop.net, Motorbooks.com or WalterFoster.com. The estimated time this may have occurred was between April 29, 2013 and June 17, 2013.
It is not certain that your cardholder information was obtained or that any attempt will be made to misuse information that was on our servers.
WHAT WE HAVE DONE AND WHAT WE ARE DOING IN RESPONSE TO THIS INCIDENT.
Upon becoming aware of the incident, we took immediate steps to contain the breach and initiated an investigation. Our shopping cart is temporarily suspended until we are absolutely certain that all malware has been removed from our server and we have simultaneously initiated additional security features. We have notified all of our customers who made purchases between April 29, 2013 and June 17, 2013 and whose personal information may have been taken of the unauthorized access to our server as described above, and the possible acquisition of this information by the unauthorized user.
The letter to those affected, dated June 21, does not offer them any free credit monitoring services.