PCM Inc. Breach Could Allow Hackers To Conduct Card Fraud

PCM Inc (NASDAQ:PCMI) breach allowed hackers to steal info that could be used to conduct card fraud at various financial institutions

PCM Inc

Boskampi / Pixabay

A digital intrusion at major U.S.-based cloud solution provider,  PCM Inc., allowed hackers to access email and file sharing systems for some of the company’s 2,000 clients. The attackers stole administrative credentials that PCM uses to manage client accounts, in order to steal information that could be used to conduct gift card fraud at various retailers and financial institutions.

Get Our Activist Investing Case Study!

Get the entire 10-part series on our in-depth study on activist investing in PDF. Save it to your desktop, read it on your tablet, or print it out to read anywhere! Sign up below!

Q1 hedge fund letters, conference, scoops etc

More on the story here: https://krebsonsecurity.com/2019/06/breach-at-cloud-solution-provider-pcm-inc/

Ilia Kolochenko, founder and CEO of web security company ImmuniWeb, has commented:

“Modern attackers are risk-averse and profit-oriented. They won’t waste scarce resources and take the risks in frontal attacks on your castle, but will rather silently get in with one of your external suppliers or services providers. Nowadays, trusted third-parties often have virtually unlimited and uncontrolled access to crown jewels of many large companies and organizations. Without sufficient capacities to invest in their own cybersecurity, they are a low-hanging fruit for cybercriminals. Growing competition forces many cloud providers to cut their internal costs in order to stay competitive thereby inevitably exacerbating the situation. Worse, many cloud providers don’t have sufficient capacities to detect sophisticated, long-lasting breaches and APTs, most of which eventually remain undetected and uninvestigated. What we see in the media is just the tip of the iceberg.”

The PCM Inc  is just the latest in a long list of hacks hitting entities including small companies, big companies and even the Federal Government. What do you think about these incidents? Let us know in the comments section.




About the Author

Jacob Wolinsky
Jacob Wolinsky is the founder of ValueWalk.com, a popular value investing and hedge fund focused investment website. Prior to ValueWalk, Jacob was VP of Business Development at SumZero. Prior to SumZero, Jacob worked as an equity analyst first at a micro-cap focused private equity firm, followed by a stint at a smid cap focused research shop. Jacob lives with his wife and three kids in Passaic NJ. - Email: jacob(at)valuewalk.com - Twitter username: JacobWolinsky - Full Disclosure: I do not purchase any equities to avoid even the appearance of a conflict of interest and because at times I may receive grey areas of insider information. I have a few existing holdings from years ago, but I have sold off most of the equities and now only purchase mutual funds and some ETFs. I also own 2.5 grams of Gold