Service Systems Associations (SSA), a third party retailer of concessions & retail services has experienced a Point-of-Sale data security breach, affecting zoos across the United States.
The Detroit Zoo along with eight others are among those affected, with the breach affecting visitors between March 23 and June 25, 2015.
Malware was detected in SSA’s software in nine zoo gift shops that compromised customer credit & debit card information, along with names, expiration dates, and three-digit CVV security codes. The malware responsible for this incident has since been identified and removed and SSA is working with law enforcement and forensic investigator firm Sikich to further investigate the breach.
While the number of victims involved in this breach is currently unknown, any credit card used to purchase a retail item between March 23 and June 25 may have had its information compromised.
The need for PCI File Integrity Monitoring for to comply with PCI-DSS standards is more urgent than ever before. System hardening assessments using file integrity monitoring technology would guarantee that exploitable vulnerabilities were alleviated, rendering systems inherently more ‘hack proof’.
See more on File Integrity Monitoring.
You can read the full release on the Detroit Zoos website here
Read the full article on SC Magazine here