SLIM CD, a payments processing services provider, has informed customers about a significant data breach that compromised the personal and financial information of nearly 1.7 million individuals. According to reports, hackers gained unauthorized access to the company’s system for almost a year, from August 2023 to June 2024.
SLIM CD is an American payment processor that facilitates electronic and card payments for businesses through web terminals, mobile apps, and desktop applications. The company detected suspicious activity on its network on June 15, 2024, revealing that cybercriminals had infiltrated the system on August 17, 2023.
Affected customers were notified that during this period, hackers could obtain various data, such as full names, physical addresses, credit card numbers, and expiration dates. While the CVV security code was not compromised, there is a risk of potential credit card fraud.
It was specified that access to credit card information occurred on June 14 and 15, 2024, allowing hackers to view or copy the data. SLIM CD assured customers that the absence of the CVV code reduces the likelihood of fraudulent activity.
Following the breach, SLIM CD has implemented enhanced security measures to prevent similar incidents in the future. The company advised customers to remain vigilant, monitor their bank accounts for suspicious transactions, and promptly report any concerns to their financial institution or card provider.
Notably, SLIM CD did not offer affected individuals complimentary identity theft protection services, leading to criticism from customers. Many recipients of the notifications may not have been familiar with SLIM CD, as the company operates through various retail, hospitality, and dining establishments.