On February 10, the Australian Domain Name Administrator (AuDA) reported that it had been notified by the Australian Federal Police (AFP) of a security incident involving domain registrar Bottle Domains. Another report at the time can be found here. Now eCommerce Report is reporting that one bank has confirmed fraud on some of the credit-cards whose details were stolen in the theft of up to 60,000 customers records from Bottle Domains. And another has confirmed it is watching a list of card accounts at risk, a list sent to it by the Australian Federal Police.
As we recently reported, the alleged thief offered the file of customer records for sale on a hackers web-site. Indeed our report last week included screen dumps of the thief’s postings to the web site showing proof of his exploit.
An AFP spokeswoman confirmed that a twenty two year old Perth man was arrested soon after the postings to the website. He appeared in the Perth magistrates court on the 10th February charged with dishonestly dealing in personal financial information.
Perhaps of equal concern is the fact that the merchant involved, Bottle Domains, one of Nick Bolton’s Australian Style companies, claims to have been compliant with the latest PCIDSS card security standard.
Read more on eCommerceReport