On January 13, 2015, Park ‘N Fly (“PNF”) began notifying customers of a security compromise involving payment card data processed through its e-commerce website. PNF has been working continuously to understand the nature and scope of the incident, and has engaged third-party data forensics experts to assist with its investigation. The security compromise has been addressed, we have enhanced our system security and added a PayPal hosted payment solution to the website, and our reservations website is now back online. As the investigation continued, PNF determined that the security of some data from certain payment cards that were used from November 27, 2013 through December 24, 2014 to make reservations through PNF’s e-commerce website may be at risk. The data potentially at risk includes the card number, cardholder’s name and billing address, card expiration date, and CVV code. Other customer data potentially at risk includes email addresses, PNF passwords, and telephone numbers.
PNF takes the security of customer personal information very seriously. PNF is encouraging customers to take steps to protect their identity and financial information, and has established a toll-free call center to answer customer questions. Out of an abundance of caution, PNF also is offering identity monitoring and identity protection services to potentially affected customers, free of charge for the next 12 months. PNF customers can visit www.pnf.com/security-update to learn more about this data security event and the support and services being provided. PNF is also in the process of mailing notice letters to affected customers for whom we have current mailing address information.
SOURCE: Park ‘N Fly
For full update, see their web site.