Children’s Clothing Retailer Hanna Andersson Victim of Dark Web Hack

| Douglas P. Clement

Hanna Andersson, the Portland, OR-based children’s clothing brand with Swedish roots, was hacked in a magecart attack last fall that exposed customers’ credit card information, including CVV codes, but is just now coming to light. The hack revealed credit card information from transactions between Sept. 16 and Nov. 11, 2019.

How the CCPA Is Impacting the Future of Retail

| Rebecca Steele

The California Consumer Privacy Act (CCPA), effective Jan. 1, 2020, has wide-ranging impacts far beyond the state’s borders. From new preventative measures retailers must make, to increased safeguards for consumer data, these new policies will fundamentally change the retail sector. Here’s what you need to know about its impact.

PCI Compliance 101 for Merchant Companies

| Tom DeSot

Adhering to the set of ground rules set forth in the Payment Card Industry Data Security Standard (PCI/DSS) defines how merchants who accept credit cards manage card data and their own networks to ensure it remains safe from theft and abuse. Here’s what you need to know in order to stay in compliance.

New JavaScript Skimmer Stealing Customer Data from Ecommerce Sites

| Douglas P. Clement

Visa is warning ecommerce merchants about a new JavaScript skimmer targeting customer data entered at the point-of-sale (POS) in payment forms on sellers’ websites. Pipka is able to remove itself from the HTML code after it is successfully executed, thereby avoiding detection. Visa is giving merchants a list of mitigation measures.

Don’t Be the Next Data Breach Headline This Holiday Season

| Chad McDonald

The holiday shopping season is practically upon us, which means savvy consumers are getting ready for the best sales of the year. Unfortunately, they’re not the only ones preparing to take advantage of the season. Learn about the serious threats posed by bad actors like Magecart groups, and what steps you can take now to be protected.

MCM CommerceChat Podcast

The Implications of a Phased Approach to UK’s SCA Payment Rules

| Mike O'Brien

The UK’s Financial Conduct Authority (FCA) is opting for an 18-month phased implementation of the Secure Customer Authentication rules for ecommerce transactions, instead of an action date of Sept. 14. Eric Christensen of Digital River provides some context in this latest MCM CommerceChat podcast.

Gut Checking Your Fulfillment Center Against Global Data Regulations

| Don White

Ecommerce companies are thoroughly examining their operations for compliance issues. You must pay equal attention to the fulfillment center, especially if you’re tracking customer data there with different tools maintained separately from your ecommerce platform. These three gut checks will help you assess your data breach readiness.

Over 70% of U.S. Consumers Favor National Data Privacy Law

| MCM Staff

Nearly three-quarters of U.S. consumers favor a national data privacy law that applies to all 50 states equally, according to a new survey. Adults are most comfortable handing over their email address and birth date, and least comfortable handing giving up their address and phone number, the survey found.

USPS, Amazon Weather Bad Data Days as Peak Season Begins

| Mike O'Brien

Both the U.S. Postal Service and Amazon experienced data glitches that exposed customer information. The USPS may have exposed the personal data of more than 60 million customers, while Amazon told customers their names and email addresses were exposed due to a technical error on its ecommerce site.