Casual gaming company Big Fish Games recently discovered a breach in their security. This breach intercepted names, addresses, and payment information from customers on their website. Apparently only new data being entered on the website was taken, saved customer information wasn’t affected and neither was ios transactions.
Someone installed Malware on their website’s billing and payment page that intercepted new personal and financial information entered. The malware was discovered on January 12th and any new information entered on the website between Dec 24th 2014 and January 8th is said to be compromised.
It is unknown how many people were effected by this but the company has said that they have taken steps to remove the malware and prevent it from being re-installed. They are also cooperating with law enforcement to attempt to discover who installed the malware. All impacted individuals are being notified and offered a free year of identity protection services.
Security Week Magazine: http://www.securityweek.com/payment-card-data-compromised-big-fish-games-breach