Regpack

Have I Been PwnedConfirmed breachAdded September 13, 2016Occurred May 20, 2016104,977 accountsbluesnap.comAll Regpack breaches →

What was exposed

Browser user agent detailsCredit card CVVEmail addressesIP addressesNamesPartial credit card dataPhone numbersPhysical addressesPurchases

What to do if you were affected

Watch your card and bank statements for unfamiliar charges, and consider requesting a new card number.
Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
Watch for text-message phishing and SIM-swap attempts on your phone number.
Be wary of targeted scams that use your personal details to sound convincing.

Details

In July 2016, a tweet was posted with a link to an alleged data breach of BlueSnap, a global payment gateway and merchant account provider . The data contained 324k payment records across 105k unique email addresses and included personal attributes such as name, home address and phone number. The data was verified with multiple Have I Been Pwned subscribers who confirmed it also contained valid transactions, partial credit card numbers, expiry dates and CVVs. A downstream consumer of BlueSnap services known as Regpack was subsequently identified as the source of the data after they identified human error had left the transactions exposed on a publicly facing server. A full investigation of the data and statement by Regpack is detailed in the post titled Someone just lost 324k payment records, complete with CVVs .

Frequently asked questions

What is the Regpack data breach?

When did the data breach happen?

This data breach occurred around May 2016.

How many accounts were affected?

Around 104,977 accounts were affected.

What information was exposed?

Exposed data included Browser user agent details, Credit card CVV, Email addresses, IP addresses, Names, Partial credit card data, Phone numbers and Physical addresses.

What should I do if I was affected?

Watch your card and bank statements for unfamiliar charges, and consider requesting a new card number. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Watch for text-message phishing and SIM-swap attempts on your phone number. Be wary of targeted scams that use your personal details to sound convincing.

View on source ↗

Related breaches