The California-based Interstitial Cystitis Network is notifying customers of a breach after customers first alerted them that payment cards used on their site had been compromised.
In a letter dated October 26, ICN writes that the ICN Mail Order Center (www.icnsales.com) was compromised during the period of April 6, 2015 and October 1, 2015; customers placing orders during that time period may have had their name, address, phone number, email address and payment information (number, expiration date, cvv code) compromised.
An investigation into the breach indicated that the breach was not on ICN’s system and likely occurred when an unnamed vendor’s password was stolen. In response to the breach, all passwords were re-set.
Jill Osborne, President & Founder, writes:
While I am relieved that our server integrity was not forcefully breached, I feel violated that our website, which serves patients in pain and distress, was targeted. They are criminals and they have no conscience. I apologize for any inconvenience that this may cause you. My personal credit card was also compromised. I feel your frustration and anger. If you have any questions or comments, please don’t hesitate to contact me directly at (707) 538-9442.