Warner Music Group suffers a data breach where an unauthorised group compromised e-commerce websites operated by WMG through an external service provider.
Warner Music Group suffers a data breach where an unauthorised group compromised e-commerce websites operated by WMG through an external service provider.
WMG
Warner Music Group (WMG), is the third-largest global music recording company.
WMG employs more than 3,500 people and has operations in over 70 countries. WMG owns the most successful recording labels in the world including but not limited to Elektra, Warner Records, , Warner Classics, Atlantic, Parlophone and Warner Music Nashville.g
“On August 5, 2020, we learned that an unauthorised third party had compromised a and number of US-based e-commerce websites WMG operates but that it is hosted and supported by an external service provider,” the company stated in a breach notification letter.
The unauthorised party acquired a copy of personal data entered into one or more of the affected websites between April 25, August 5, 2020.
Even though WMG’s investigation did not find any signs of information exfiltrated, it still warns affected individuals of the fraudulent activity that could be carried out using the stolen personal and financial information.
Warner Music Group has not yet disclosed how many customers were affected.
Information exposed
The stolen information could have included the customer’s names, email addresses, contact numbers, shipping address, billing addresses and payment card details (card number, and expiration date and CVC/CVV). The company stated that payments made through PayPal were not affected by this incident.
Soon after the incident came under the limelight, WMG launched a forensic investigation with the leading external cybersecurity experts and quickly took steps to address the issue.
“We also notified the relevant credit card providers as well as law enforcement, with whom we continue to cooperate, ” added WMG.
WMG offers 12 months free identity monitoring services through Kroll to those affected and encourages them to “remain vigilant for any unauthorised use of your payment cards or suspicious email communications, particularly those purporting to come from Warner Music Group or any WMG-related websites.”
In 2017, WMG suffered a massive phishing scam where 3.12 TB of internal data leaked from their premium music video provider Vevo.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?