Fashion to Figure notifying customers of payment card compromise
Fashion to Figure (B. Lane, Inc.) is notifying customers of a breach involving malware inserted on their web host’s server.
The malware was reportedly inserted on the unnamed host’s server on May 19, but Fashion to Figure did not realize it until October 16, when they started investigating why a web page was loading slowly.
Potentially compromised customer information includes customers’ name, customer ID, postal address, telephone number, and credit card information.
In response to the breach, Fashion to Figure removed the malware, switched web hosting firms, changed all administrative passwords, performed virus scans on all computers, applied and updated all patches, and provided additional employee training.
Those notified are being offered one year of complimentary identity theft recovery services with IDExperts.