Payment gateway provider Slim CD has disclosed a major data breach affecting approximately 1.7 million individuals, marking a significant security incident for the company. The breach, which started on August 17, 2023, and was uncovered on June 15, 2024, involved unauthorized access to Slim CD’s systems over a ten-month period. This prolonged exposure has led to the potential compromise of sensitive personal and financial information, including names, addresses, and credit card details such as numbers and expiration dates.
The breach was detected following an internal review, and Slim CD has since taken swift action to address the issue. The company has begun notifying affected individuals via email, informing them of the compromised data and advising them to remain vigilant against potential identity theft and fraud. In addition to reaching out to those impacted, Slim CD has also reported the incident to law enforcement agencies and regulatory bodies, including the Maine Attorney General’s Office, which is overseeing the breach’s impact.
In response to the breach, Slim CD has launched a comprehensive investigation to assess the full extent of the data exposure. The company has implemented enhanced security measures and is revising its data privacy and security protocols to prevent future incidents. These steps are part of Slim CD’s commitment to strengthening its defenses and safeguarding user information against emerging cyber threats.
Slim CD’s services, which facilitate electronic payments for merchants in the US and Canada, have been compromised, though it remains unclear whether individuals in both countries were affected. As the company continues to bolster its security infrastructure, it urges all potentially impacted individuals to monitor their financial accounts closely and report any suspicious activities. Slim CD’s proactive approach aims to mitigate the impact of the breach and restore confidence in its security practices.
Reference:
