Popular Posts

Wednesday, October 29, 2014

The Cape May – Lewes Ferry Has Confirmed Their Payment Data Systems Were Breached

The Cape May – Lewes Ferry has confirmed that our payment data systems were breached, which affected credit and debit card data stored on certain systems at the Cape May-Lewes Ferry’s terminals and vessels. We have determined that the security of card processing systems relating to food, beverage, and retail sales at the Cape May - Lewes Ferry were compromised and some data from certain credit and debit cards that were used from September 20, 2013 to August 7, 2014 at Cape May - Lewes Ferry’s terminals and vessels may be at risk. Today, we are able to tell you that the malware used in the breach has been eliminated.

We also want you to know that we have completed an additional payment security project that provides enhanced protection of payment card data at the Cape May – Lewes Ferry’s food, beverage and retail locations for our customers. We apologize for the frustration and inconvenience this breach may have caused.

The credit and debit card data potentially at risk includes the card number, the cardholder’s name and/or the card’s expiration date. We have not determined that any specific cardholder’s credit or debit card data was stolen by the intruder. We’re offering free identity protection services, including credit monitoring, to any customer who has purchased food, beverages or retail items at the Cape May – Lewes Ferry from September 2013 through August 2014.

You can learn more about the identity protection services and how to sign up for them at https://cmlf.allclearid.com.

It is important to closely monitor your payment card accounts and report unusual activity to your issuing bank. To better assist our customers whose card data may potentially have been affected, Cape May-Lewes Ferry has established a confidential hotline to answer questions. This hotline is available Monday through Saturday, 8:00 a.m. to 8:00 p.m. C.S.T. and can be reached at 1-855-865-4457.

3 comments:

  1. September 2013 through August 2014 - thanks for letting us know in a timely manner

    ReplyDelete
  2. For a business that uses electronic commerce to go on for nearly a year before an audit of their system, in my mind, should be a criminal act. Logs should be reviewed daily, if not hourly.
    A business that has so little respect for the personal information that they've used to make money is in fact derelict, offensive and needs to be addressed with legislation. The AG and people of any state that allows electronic commerce needs to aggressively pressure that state's legislature for laws to hold any derelict business liable for any damages.

    ReplyDelete
  3. Rape their wallet at the gate... then let criminals rape their accounts for years. Good job!

    ReplyDelete

Note: Only a member of this blog may post a comment.