Payment gateway provider Slim CD has disclosed a data breach that compromised credit card and personal data belonging to almost 1.7 million individuals.
In the notification sent to impacted clients, the company says that hackers had access to its network for nearly a year, between August 2023 and June 2024.
Slim CD is a provider of payment processing solutions. That enables businesses to access electronic and card payments via web-based terminals, mobile, or desktop apps.
The firm first detected suspicious activity on its systems this year on June 15. During the investigation, the company discovered that hackers had gained access to its network since August 17, 2023.
“The investigation identified unauthorized system access between August 17, 2023, and June 15, 2024,” reads the notification to impacted individuals.
However, Slim CD says that the threat actor viewed or obtained access to credit card information this year for two days, between June 14th and 15th
“That access may have enabled an unauthorized actor to view or obtain certain credit card information between June 14, 2024, and June 15, 2024,” Slim CD says in the data breach notification.
Slim CD’s payment processing services, which serve various industries such as retail, hospitality, and restaurants, were impacted by this data breach. The company first detected suspicious activity in June 2024, later confirming that hackers gained unauthorized access to their systems between August 17, 2023, and June 15, 2024.
During the investigation, it was revealed that the hackers accessed credit card information during a brief window on June 14 and 15, 2024. While critical data such as the CVV (Card Verification Value) was not exposed, the breach still presents a risk of credit card fraud as the hackers had access to full names, physical addresses, and credit card numbers along with expiration dates.
Slim CD claims to have strengthened its security protocols following the breach, though it has not offered free identity theft protection services to affected individuals. Affected customers are encouraged to remain vigilant for any signs of fraud or identity theft, especially as the exposed data could potentially be used for unauthorized activities.
Full name
Physical address
Credit card number
Payment card expiration date
Though the exposed information is not enough to allow cybercriminals to perform fraudulent transactions. Since the card verification number (CVV) is missing, a risk of credit card fraud still exists.
Slim CD says it has taken measures to strengthen its security to prevent similar incidents in the future.
At the same time, it advises the notice recipients to remain vigilant for signs of fraud and identity fraud attempts and report suspicious activity to the card issuer as soon as possible.
No free-of-charge identity theft protection services were offered to the affected individuals.
Slim CD offers payment processing services to various industries, including retail, hospitality, and restaurants, but individuals receiving the breach notifications are likely unfamiliar with it as they never directly interacted with the company.
The Slim CD data breach is a reminder of the importance of strong cybersecurity practices and the need for effective Windows device monitoring. Whether you’re an individual or a business, investing in security solutions like RestoreX 360 can help protect your systems from future breaches and ensure that your data stays secure.
For those affected, being proactive with credit monitoring and system repairs can mitigate the risks posed by such incidents. Learn more about how RestoreX 360 can help you protect your data and devices by visiting our product page.
This updated content provides a clearer, more informative resource for readers, with a focus on offering solutions through RestoreX 360.
Get a special 20% discount on any RestoreX360 Product — Just apply the code at checkout!