C&K Systems was the third-party vendor compromised in a data breach that impacted about 330 of Goodwill’s 330 stores. The breach exposed details on 868,000 U.S. debit and credit cards. Security experts say it’s possible the compromise was the result of a remote-access attack. “Remote access-type attacks” is “low-hanging fruit for any organization,” one security expert says. Goodwill Industries International said the breach stemmed from malware known as RAW.PoS, which was used to compromise a third party.”]
Source: https://www.cuinfosecurity.com/goodwill-names-vendor-in-breach-a-7291