from the hackers-were-heard-to-yell-Blackjack! dept.
This week, the clothing retailer Forever 21 disclosed to customers that it was hacked earlier in 2017. While the company has not yet offered many details about the intrusion, we know that it is looking into a portion of credit card transactions between March 2017 and October 2017 that were conducted over machines that appear to have been insecure.
[...] We have reached out to Forever 21 for more information about the unencrypted transactions, where the affected stores were located and the security firm it is working with to investigate the incident. The company has set up a customer portal about the incident that provides a contact number for anyone concerned that their credit card information may have been compromised.
The hack appears to have only impacted certain terminals which were not using encryption or tokenization on card numbers.
Source: https://techcrunch.com/2017/11/15/forever-21-hack/
Also at ZDNet, USAToday, and the WSJ.
(Score: 0) by Anonymous Coward on Friday November 17 2017, @04:53AM
Immortality!
(Score: 2) by mendax on Friday November 17 2017, @05:30AM (5 children)
I'm too old to even pretend I'm close to 21 anymore. I definitely feel my age in my bones. So, no, my credit card numbers are not floating around in the aether because of me shopping there.
It's really quite a simple choice: Life, Death, or Los Angeles.
(Score: 2) by Grishnakh on Friday November 17 2017, @05:33AM (4 children)
Well that store really caters to teenage and 20-something girls, so there's not likely to be anyone on this site who shops there, unless they have a teenage daughter.
(Score: 1) by Ethanol-fueled on Friday November 17 2017, @05:55AM (1 child)
There are plenty of cougars who wear that shit. Asian women in tech who never got degrees and went on to become engineers, for example.
Or if you're talking more widespread use of the style, every goddamn woman in L.A.
(Score: 0) by Anonymous Coward on Friday November 17 2017, @02:48PM
You need to get out more...
(Score: 0) by Anonymous Coward on Friday November 17 2017, @07:10AM (1 child)
"Well that store really caters to teenage and 20-something girls"
They actually carry a good deal of men's clothing, and have plenty of female customers who are much older than that.
Their niche is "inexpensive, stylish, durable; we chose the first two." If you prefer to buy something that will last, this is not the place. On the other hand, if you want to buy new clothes regularly, and don't place much value on durability, you might like it.
(Score: 1) by nitehawk214 on Friday November 17 2017, @07:15PM
Funny that a place with "forever" in their name does not make clothes that last.
"Don't you ever miss the days when you used to be nostalgic?" -Loiosh
(Score: 0) by Anonymous Coward on Friday November 17 2017, @12:17PM (1 child)
At least they can now try to regain their lost customers by using Lil Peep's ugly mug in their next advertising campaign.
(Score: 0) by Anonymous Coward on Friday November 17 2017, @01:45PM
Wow you are so hip.
http://www.cnn.com/2017/11/16/entertainment/lil-peep-dead/index.html [cnn.com]
(Score: 2) by Hyperturtle on Friday November 17 2017, @01:45PM
I wish there was a law about not being allowed to risk customer data obtained during the activity engaged in, in order to sell to the very same customers. And then punishment for being so stupid actually do it. The fact they had terminals that were secure and ones that were not... why the difference? was it closed source costs or just a cheap hack by their IT department?
Best Buy got walloped with this inexpensive approach to expanding customer service back when wifi was new and unusual for most people; they had temporary cash registers using 802.11b wifi. Just sitting in the parking lot with a usb dongle and laptop purchased from the same store allowed anyone motivated to do so, to watch the transactions on the temporary registers (or new permanent installtions without the required wiring) when they were rolled out to help deal with the lines...
It's not like those point of sale systems even had encryption on them; it was raw in the clear, just like the wifi it was using. This was back in the day when many registers had a 25 pin to 9 pin rs-232 adapter, to a serial to ethernet bridge adapter. Some of those wifi terminals had that serial to ethernet bridge connected to an ethernet to wireless bridge -- like what they also sold for the xbox. (And if you look even now, many places have a similar setup.)
(Score: 0) by Anonymous Coward on Friday November 17 2017, @07:02PM
your gross, (what should be criminal) negligence is not really a "hack", you goofy fucks. in fact, your security is so shitty your practices basically amount to fraud. you have official looking machines that people assume must work with some level of professionalism, but they are slaveware laden pieces of shit owned by slave trading pieces of shit. maybe someone should show you what a hack really is. with a metal blade.