SpeedTree Website Hack Exposes Customer Credit Card Data
A recent cybersecurity incident has impacted SpeedTree, a widely-used 3D vegetation modeling software, resulting in the theft of sensitive customer payment information. The company confirmed that its official website was compromised by a malicious script designed to steal financial data directly from the checkout page.
The breach occurred over a one-month period, affecting customers who made purchases on the SpeedTree website between February 24 and March 24, 2024. During this window, attackers successfully injected a digital skimming script, a tactic commonly associated with Magecart-style attacks, into the site’s e-commerce platform.
This malicious code was specifically engineered to capture payment details in real-time as users entered them to complete a transaction. The stolen information was then sent directly to a server controlled by the cybercriminals.
What Information Was Stolen?
The investigation revealed that the attackers were able to capture a comprehensive set of payment data, providing them with everything needed to conduct fraudulent transactions or sell the information on the dark web.
The compromised data includes:
- Full Names
- Billing Addresses
- Credit Card Numbers
- Card Expiration Dates
- CVV Security Codes
The theft of CVV codes is particularly serious, as this three or four-digit number is a key security feature used to verify that a person is in physical possession of their card during online purchases.
Company Response and Investigation
Upon discovering the breach, SpeedTree took immediate action to secure its systems. The company engaged a third-party cybersecurity firm to conduct a forensic investigation, identify the scope of the attack, and remove the malicious code from its website. The e-commerce functionality was temporarily disabled to prevent further data loss and has since been restored.
In a notification sent to affected individuals, the company stated that it has also reported the incident to law enforcement and is cooperating with the investigation. As a protective measure, SpeedTree is offering affected customers one year of complimentary credit monitoring services through Experian IdentityWorks to help them detect and mitigate potential fraud.
Actionable Steps to Protect Yourself
Digital skimming attacks are a persistent threat to online shoppers. If you believe you may have been affected by this breach or simply want to enhance your online security, consider taking the following steps:
Review Your Financial Statements: Immediately and carefully check your credit card and bank statements for any unauthorized charges or suspicious activity. Report any fraudulent transactions to your financial institution without delay.
Consider a Credit Freeze: For a powerful layer of protection, you can place a credit freeze with the major credit bureaus (Equifax, Experian, and TransUnion). A freeze restricts access to your credit report, making it significantly more difficult for identity thieves to open new accounts in your name.
Be Vigilant Against Phishing: Cybercriminals often use stolen data to launch targeted phishing attacks. Be wary of unsolicited emails, texts, or phone calls that claim to be from your bank or other services, asking you to verify personal information. Never click on suspicious links or download unexpected attachments.
Enroll in Credit Monitoring: If you were directly impacted, take advantage of the free credit monitoring service offered by SpeedTree. These services alert you to changes in your credit file, such as new accounts being opened, which can be an early warning sign of identity theft.
This incident serves as a critical reminder that even trusted websites can be compromised. Maintaining constant vigilance over your financial accounts is the best defense against the growing threat of e-commerce data breaches.
Source: https://securityaffairs.com/183349/data-breach/customer-payment-data-stolen-in-unity-technologiess-speedtree-website-compromise.html
