API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 29th, 2017
630
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.56 KB | None | 0 0
raw download clone embed print report
  1. Dear Customer,
  2.  
  3. We are writing to inform you that unfortunately we have recently been subject to an online security breach. We are taking this extremely seriously and want to provide you with details of the situation and how it might affect you. We also want to reassure you that we are investigating this as a priority and are taking a number of measures to prevent this from happening again.
  4.  
  5. The situation
  6. As a result of a breach of security in which an unauthorised third party accessed our computer systems, we believe that some customer data has been compromised. This includes personal information, and, for a small number of customers, it also includes encrypted data from expired credit or debit cards. As a customer of CeX, there is a possibility this might affect you.
  7.  
  8. We want to reiterate that any payment card information that has been taken was encrypted and has long since expired. We ceased storing customer card details in 2009.
  9.  
  10. What we’ve done about it
  11. This was a sophisticated breach of security and we are working closely with the relevant authorities to help establish who was responsible. Our cyber security specialists have already put in place additional advanced measures to fix the problem and prevent this from happening again.
  12.  
  13. What we suggest you do?
  14.  
  15. Although we have put in place additional security measures, we recommend that you change the password for your webuy online account.
  16. If you used the same password elsewhere, we also suggest that you change your password for those accounts.
  17. Further details on this issue are provided in a Q&A below. If you have additional questions, please email us at: guidance@webuy.com where we will be compiling the most frequently asked questions, which will then be updated via uk.webuy.com/guidance.
  18.  
  19. We apologise for inconvenience this may cause.
  20.  
  21. Yours sincerely,
  22.  
  23. David Mullins
  24. Managing Director
  25.  
  26.  
  27. Questions & Answers
  28.  
  29. How much data has been compromised?
  30. As a precautionary measure we are contacting up to two million of our registered website customers who could potentially be affected.
  31.  
  32. Does this affect in-store membership personal information?
  33. We have no indication that in-store personal membership information has been compromised.
  34.  
  35. What does the data include?
  36. The data includes some personal information such as first name, surname, addresses, email address and phone number if this was supplied. In a small number of instances, it may include encrypted data from expired credit and debit cards up to 2009. No further financial information has been shared.
  37.  
  38. What about financial data?
  39. A small amount of encrypted data from expired credit and debit cards may have been compromised. We would like to make it clear that any payment card information that may have been taken, has long since expired as we stopped storing financial data in 2009.
  40.  
  41. What has happened to the data that has been compromised?
  42. We are aware that an unauthorised third party has accessed this data. We are working closely with the relevant authorities, including the police, with their investigation.
  43.  
  44. What should I do?
  45. We advise that you change your webuy.com password, as well as any other online accounts where you may share the same password, as a precautionary measure.
  46.  
  47. Why do I need to change my passwords?
  48. Although your password has not been stored in plain text, if it is not particularly complex then it is possible that in time, a third party could still determine your original password and could attempt to use it across other, unrelated services. As such, as a precautionary measure, we advise customers to change their password across other services where they may have re-used their WeBuy website password.
  49.  
  50. Can customers find out exactly what data has been shared about them?
  51. At this stage, it is not possible for us to share this information as we are still undergoing an investigation. At this stage, we are alerting all customers who might have been affected as a precaution.
  52.  
  53. What security do you have in place to protect this data?
  54. We take the protection of customer data extremely seriously and have always had a robust security programme in place which we continually reviewed and updated to meet the latest online threats. Clearly however, additional measures were required to prevent such a sophisticated breach occurring and we have therefore employed a cyber security specialist to review our processes. Together we have implemented additional advanced measures of security to prevent this from happening again.
  55.  
  56. If you have any questions, please don’t hesitate to visit uk.webuy.com/guidance or email us at: guidance@webuy.com.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!