An unauthorized user slipped into Smuckers online checkout process and may have squeezed out an undisclosed number of customers personal data. The data may include name, address, email address, phone, credit or debit card number, expiration date, and verification code. Security journalist Brian Krebs says Smucker’s is just the latest to get stuck in the same web that ensnared dozens of companies last year, including some of the world’s largest data brokers and at least one credit card processor. The gang last year ransacked dozens of sites that ran outdated versions of Adobe’s ColdFusion Web application platform.”]
Source: https://nakedsecurity.sophos.com/2014/03/06/smuckers-online-store-gets-stuck-in-thieves-web/

