Data breaches of around 324,000 users Credit Cards have been stolen from payment processor of BlueSnap or its customer Regpack. This incident has not been reported from either company.
Payment provider BlueSnap offers merchant facilities, whereas RegPack uses BlueSnap to process the financial transactions for its online enrolments globally.
A hacker published the data breach’s link on Twiter which was initially posted on July 10, pointing to a file containing roughly 324,000 records allegedly stolen from Waltham, Massachusetts-based BlueSnap.
Names, email addresses, physical addresses, phone numbers, IP addresses, last four digits of credit card numbers, even CVV codes, and invoice data containing details of purchases were leaked out between 10 March 2014 to 20 May 2016.
Although the payment data does not contain full credit card numbers, as Hunt stressed, cyber criminals can still misuse the compromised information, particularly the CVV codes that are highly valuable payment data, which can be used to conduct "card not present" transactions. Also, the last four digit of any user's credit card number can also be used for identity verification that's very useful in conducting social engineering attacks.
See the similar video