Malware Compromised Titan Manufacturing and Distribution System

2019, Breaches, January

Who: Titan Manufacturing and Distributing

No. of Accounts Breached: Not disclosed however their external counsel, Butler & Snow, to the Washington State Attorney General reports that 1,838 Washington residents were being notified of the breach. The same law firm told the New Hampshire Attorney General’s Office that 488 New Hampshire residents were being notified. What was affected: Shopping cart data — personal information plus card data including CVV.

When it happened: November 23, 2017, to October 25, 2018

How it happened: Anyone placing an order on their site during that time might have had their shopping cart data — personal information plus card data including CVV — captured.

Outcome: Titan is working closely with a third-party IT security expert to investigate the incident. Affected California residents were offered one year of complimentary services with LifeLock. That offer does not seem to have been to Washington State residents, however, which may highlight the importance of having strong state laws or a culture that expects more in the way of mitigation. It has taken additional steps to enhance their security system by moving its computer system to a new server, deleting and resetting all administrative login credentials.

Other resources: