01/16/2020
PlanetDrugsDirect reveals security breach, warns customers their data may have been exposed
The State of Security
Canadian online pharmacy PlanetDrugsDirect.com has contacted customers warning them that their data might have been exposed in what they euphemistically describe as a “data security incident”.
In an email seen by Bleeping Computer, the website warned that exposed personal data could include the following:
- Customer names
- Postal addresses
- Email addresses
- Phone numbers
- Medical information (including prescriptions)
- Payment information
The email is, unfortunately, somewhat lacking in detail – meaning that concerned customers may have to contact PlanetDrugsDirect via email or telephone to ask questions such as:
- What was the nature of the security breach?
- How did you find out about the security breach?
- When was the security breach first detected?
- How many customers are affected?
- Have you informed law enforcement agencies?
- If an unauthorised individual or malicious hacker had access to the data, how long did they have access to the data?
- When you say “payment information” was exposed, I presume you mean payment card details? Could the security breach have exposed full or partial credit card details? What about expiry dates and CVV codes?
Read more...