Customer Credit Card Info Exposed in 2018 Newegg Data Breach

Newegg, a computer hardware and electronics retailer, has been the victim of a mass data breach. Security firms RiskIQ and Volexity conducted an investigation regarding the breach and released their reports and findings on Sept. 19, 2018.

According to the security firms, the Newegg data breach was most likely performed by Magecart group, the same group that conducted the Ticketmaster data breach and possibly the same group that was behind the recent British Airways security hack.

Security research shows that Newegg was breached from Aug. 14 to Sept. 18 of 2018. During the time that the breach took place, hackers had "injected 15 lines of card skimming code on the online retailer's payments page," according to TechCrunch.

Newegg has a significantly large customer base with over 50 million monthly site visitors. Due to its mass customer base and business value, it's no wonder why the company was targeted by cybercriminals.

Unfortunately, customers who have provided credit card information to the company in the past are now at risk. It is currently unknown as to how much information the hackers were able to obtain or how much customer credit card information has been stolen.

According to The Verge, Newegg CEO Danny Lee sent out an email to all Newegg customers explaining the company's data breach, as well as how the company is investigating what happened and working on recovery solutions. The email stated that Newegg will be alerting customers who have been affected by the breach in coming days. It also noted that the company will publish an official FAQ regarding the data breach on Friday, Sept. 21, and will make sure all customers receive a link to that FAQ.

Customers who have provided credit card information to the company are being encouraged to contact their banks and be on the lookout for more company information.

Although falling victim to a data breach can sometimes be out of your control, it's important to do all you can to focus on your personal security to best avoid becoming a target of identity theft or another cybercrime. Consider looking into professional identity theft protection services, obtaining antivirus and other protective software for your personal devices, and doing your own research to determine what security practices you should be focusing on.