Posted on behalf of Arnold Law Firm
on January 31, 2020 in Data Breach
Updated on February 24, 2022
As thousands of consumers are discovering this month, the 2019 holiday season resulted in data breaches with several popular retailers that process purchases through Salesforce Commerce Cloud or Magneto Marketplace — both leading ecommerce platforms.
These “e-skimming” breaches appear to be the work of Magecart, a hacking group that steals payment card data through online shopping cart systems during the transaction.
The Magecart malware taps into online shopping carts to capture the consumer’s payment information while they complete their purchase. This information is then sold on the dark web, often including security details, such as the card verification value (CVV) number on the back of your credit card.
Magecart has been active since 2016, and has become increasingly prolific. When retailers use online shopping carts, but fail to properly vet code provided by popular third-party vendors, it creates a transaction situation that is vulnerable to wide-scale hacking.
Compromised retailers have been announcing these e-skimming data breaches and sending notification letters to potentially affected consumers. Retailers who have recently announced a data breach include:
On January 15, Hanna Andersson notified customers of a nearly two-month data breach involving online transactions from September 19 through November 11, 2019. An unauthorized party had access to card payment information that certain customers entered as they were checking out at the vendor’s website. It is unclear how many customers were affected by the incident.
Online consumers are advised to review their credit card statements regularly for suspicious activity. If you have unauthorized credit card charges that you think are a result of a recent e-skimming data breach, contact the Arnold Law Firm at (916) 777-7777 to discuss your legal options.
"*" indicates required fields
The Arnold Law Firm reached a settlement in the Morgan Stanley data breach class action lawsuit. The settlement resulted in a $60 million settlement fund to benefit class members.
Learn MoreA whistleblower case exposing fraudulent practices in the state of California resulted in an $18.275 million settlement.
Learn MoreThe Arnold Law Firm reached a settlement in the Kemper and Infinity data breach class action lawsuit. The settlement is valued at over $17 million.
Learn MoreThe Arnold Law Firm is pleased to report that our attorneys received a $10.2 million verdict handed down in Modesto. Defense counsel was Kevin Cholakian of San Francisco. The defense rejected a 998 within the $1 million policy limits three years ago. The highest defense offer was $350k. The case involved a blind corner dirt […]
Learn MoreLate one spring afternoon, the Arnold Law Firm received a call from Angela, a young mother of three. She was calling from the hospital where her husband Christopher had been air-lifted for treatment of severe injuries from a tragic motor vehicle accident earlier that day. Angela’s mother, a past client of our firm, had encouraged […]
Learn MoreThe fatal collision between plaintiff’s Jeep Liberty and defendant’s Volvo truck left Ryan Eisenbrandt’s surviving wife and parents with a judgment of $3.9 million, but the defendant’s insurance company refused to pay. This resulted in a second, intense legal battle between Plaintiffs and Defendant’s insurance company. During the pendency of the wrongful death case, Defendant’s […]
Learn More