PulseTV, a popular e-commerce site in the United States, has revealed a data security incident involving over 200,000 credit card numbers. The firm claims that information such as the customer’s name, email address, address, payment card number, card security code (CVV), expiration date, submitted at checkout has been hacked, according to a notification letter filed with the Office of the Maine Attorney General.
The company says, “On March 8, VISA informed us that our website (www.pulsetv.com) was a common point of purchase for some unauthorized credit card transactions and that the website may have a possible compromise. Shortly after that, we conducted malware scans, checked our security settings, and cooperated with VISA’s requests for information.”
As Pulse TV has not made any comment yet.
However, law authorities contacted them a few months later about payment card hacks that looked to have originated from pulsetv.com, indicating that the problem had remained.
The corporation retaliated by conducting a second round of inquiries, this time enlisting the help of a third-party expert.
On November 18, 2021, the investigators “learned that the website had been identified as a common point of purchase for a number of unauthorized credit card transactions for MasterCard.”
“Based upon communications with the card brands, it is believed that only customers who purchased products on the website with a credit card between November 1, 2019, and August 31, 2021, may have been affected” – says PulseTV
Customers who purchased from PulseTV during the indicated breach period should keep a close check on their bank accounts for any fraudulent activities.
The platform also stated that it is switching payment systems, implementing two-factor authentication (2FA) across all accounts, and implementing endpoint protection solutions for better network visibility and attack prevention.
PulseTV states that its investigations found no evidence of a system compromise. They were, however, the focal point for a slew of illicit transactions.
This makes it difficult to tell if a good skimmer was installed on the site or whether the cards were taken from other merchants and solely used for buying on PulseTV.
Stolen credit cards are sometimes used to purchase products that are delivered to package mules and then sold for cash.