The organized hacker team behind the Target and Home Depot breaches have hit another target. This time, they struck at OneStopParking.com.
Security researcher and journalist Brian Krebs noticed that an underground black market site had a number of credit cards coming from one place. The same marketplace was used by the hackers behind the Target and Home Depot breaches.
One Stop Parking is a Kentucky-based company that opens and maintains parking lots near airports and hotels all over the United States.
The company makes a high-value target for hackers, because its customer base is all over the U.S.
One Stop Parking's manager, Amer Ghanem, has released a written statement following the breach:
We have been unable to identify any specific issues that has caused any credit card breach on our website. However, being a part of the e-commerce industry and staying up to date with the security news, we are aware of security threats that are always around, especially during the holiday season, when people tend to shop and travel more. We currently have 2 different services that are always monitoring traffic on our website, 24/7 to ensure the safety of our customers.
While it's nice that he acknowledges that his investigation has been ineffective, I think what he actually said ended up being a whole lot of nothing.
After a company is breached, its job is to identify where the breach happened and then to provide protections for customers who may have been affected.
Park 'n' Fly was another parking company that was hit earlier this month. Throughout the duration of the breach, the company started only taking orders over the phone. Maybe One Stop Parking should take a note out of its book?