Slim CD, a leading provider of payment processing solutions, has disclosed a significant data breach that compromised the credit card and personal data of nearly 1.7 million individuals. Hackers had unauthorized access to the company’s network for almost a year, between August 2023 and June 2024.
In notifications sent to affected clients, Slim CD revealed that the breach was first identified on June 15, 2024. An investigation confirmed that the unauthorized access began on August 17, 2023. However, the most concerning access to credit card information occurred over two days, on June 14 and 15, 2024.
The compromised data includes full names, physical addresses, credit card numbers, and payment card expiration dates. While the absence of card verification values (CVVs) limits the potential for fraudulent transactions, there remains a risk of credit card fraud.
Following the incident, Slim CD has taken steps to enhance its security measures to prevent future breaches. The company advises those affected to stay vigilant for signs of fraud or identity theft and to report any suspicious activities to their card issuers immediately. Despite the severity of the breach, Slim CD has not offered complimentary identity theft protection services to those impacted.
Slim CD provides payment processing services across multiple sectors, including retail, hospitality, and restaurants. Many of those receiving breach notifications may be unfamiliar with Slim CD, as they may not have directly interacted with the company.