Speakeasy forum

Resolved Question

Data Security Incident

I received an email about data security incident from a website I purchased before. This is a part of the email (XXXX is my last 4-digit card number).

We are writing to inform you of a data security incident that may have exposed some of your personal information. We greatly value your business and take the protection and proper use of your information very seriously. For this reason, we are contacting you directly to explain the circumstances of the incident.

What happened?
We recently discovered that we have been the victim of a data security incident that began in April 2015, during which personal, private and unencrypted credit/debit card information may have been exposed to an outside party and compromised.

We are reporting the incident to the appropriate state agencies and federal authorities for investigation. Our notification has not been delayed as a result of any law enforcement investigation.

What information was involved?
The potentially compromised information may have included your name, shipping address, billing address, credit card security code and/or credit/debit card number ending in XXXX. Compromised information could reasonably be used to attempt fraudulent credit/debit card purchases. Please note that we do not obtain Social Security numbers from our customers, so the potentially compromised information does NOT include your Social Security number.

What we are doing.
We take the protection of personal information very seriously and sincerely apologize for any inconvenience experienced as a result of this incident. We want you to know that we have determined the cause of the incident and are taking immediate actions to prevent future incidents of this nature.

Upon learning of the incident, we immediately retained two top-rated, certified independent investigation teams to separately analyze the intrusion and to assist us in preventing future threats. We continue to use the results of their investigations to implement any needed changes, and will continue to conduct regular assessments of our system to ensure its security.

To help relieve concerns and restore confidence following this incident, we have also secured the services of Kroll to provide identity monitoring at no cost to you for one year. Kroll is a global leader in risk mitigation and response, and has extensive experience helping people who have sustained an unintentional exposure of confidential data. Your identity monitoring services include Credit Monitoring, Identity Consultation, and Identity Restoration.

Then they provided the information for me to enroll in Kroll. However, Kroll requires me to put my SSN in. What should I do? Should I use Kroll, proving my SSN? Is Kroll trustworthy?

I checked my bank statement, and there was no fraud transaction. The card that I used on the website will be expired the end of next month.

Thank you very much.

TangNgoc01 has chosen the best answer to their question. View answer
Discussion is locked
You are posting a reply to: Data Security Incident
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Data Security Incident
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

All Answers

Best Answer chosen by TangNgoc01

Collapse -
Several options

In reply to: Data Security Incident

You look at your credit card statement and find a customer service number. You call that number, tell them about the email, and ask if it's legit. You don't do this on the web or any link in the email as phony emails link to phony sites. If the credit card company verifies that the email is legit, you make your own decision. If the email was not legit your CC company is likely to thank you for bringing it to their attention.

You could also just ignore the email. If the breach was legit, most credit card companies I know of will follow up with something in writing. Email just gets the message out more quickly. You can wait to see if you get a letter.

Check the terms of service for your CC. Some offer automatic monitoring for fraud and some sort of protection from identity theft.

Fraudsters thrive on creating panic. Don't panic.

Collapse -
go to their website

In reply to: Data Security Incident

if this is from a company you actually do business with, go to their website using the address you normally use. If the company was hacked, they will have a press released or some article about it on their site. You can also contact their customer service and ask. Do not click on any links or provide any info to any entity mentioned in the email. If the company was hacked, then they should have links available on their website to get their free fraud protection. If your card is due to expire next month then go ahead and get an early replacement.

Collapse -
Never give SSN to anyone other than govt

In reply to: Data Security Incident

and that's by paper mail.

Popular Forums

Computer Newbies 10,686 discussions
Computer Help 54,365 discussions
Laptops 21,181 discussions
Networking & Wireless 16,313 discussions
Phones 17,137 discussions
Security 31,287 discussions
TVs & Home Theaters 22,101 discussions
Windows 7 8,164 discussions
Windows 10 2,657 discussions


This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.