NoMoreRack.com - 12/03/2014
As reported by Krebs On Security, for the second time since August 2013, the "online retailer NoMoreRack.com has hired a computer forensics team after being notified by Discover about a potential breach of customer card data."The Director of Business Development with company, Vishal Agarwal, has confirmed that they were approached by Discover Card in August of 2013, communicating that they were seeing fraudulent activity and the online retailer was the point of compromise. As stated by Mr. Agarwal "they requested then that we go through a forensics audit, and we did that late October by engaging with Trustwave. Trustwave came out wtih a report at end of October saying there was no clear cut evidence that our systems had been compromised. There were a few minor bugs reported, but not conclusive evidence of anything that caused a leakage in our systems."Discover reached out the company again in February to notify them that there was additional evidence of fraud associated with their online store from November 1, 2013 through January 15, 2014. The company has again engaged Trustwave to complete another forensic audit and to also confirm that they are PCI compliant.