Cyber Incident Victim: Discount Mugs
Date:
Aug 2018
Location:
United States of America
Summary
A cybersecurity breach at Discountmugs.com compromised customer payment information through unauthorized access to the company's e-commerce platform. Attackers accessed names, addresses, phone numbers, email addresses, payment card numbers, and expiration dates during the incident period. Malware facilitating data theft was subsequently identified and removed, with the company advising affected customers to monitor their financial accounts. The incident shared characteristics with point-of-sale scraping attacks commonly associated with cybercriminal groups targeting online payment systems, though no specific threat actor was formally attributed.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Discountmugs.com, a promotional merchandise retailer, experienced a cybersecurity incident impacting customers who made credit card purchases between August 5, 2018, and November 16, 2018. During this three-month period, unauthorized actors accessed the company's systems and obtained customer payment information. The compromised data included names, billing and shipping addresses, phone numbers, email addresses, payment card numbers, and card expiration dates. The breach was disclosed through a notification letter submitted to the California attorney general's office, though the company did not specify the exact date of discovery or initial intrusion. No technical details about the attack vector or infrastructure vulnerabilities were provided in public disclosures. The incident exposed transactional data processed during the stated timeframe without affecting product lines or manufacturing operations.
The company initiated breach notifications to affected customers following the investigation, advising vigilance regarding potential financial fraud. Discountmugs.com did not publicly disclose whether malware was involved in the intrusion or describe specific remediation steps taken beyond standard forensic procedures. Security researchers noted similarities between this breach and Magecart group operations, which historically employed digital skimming techniques targeting payment systems, though no attribution was confirmed. Concurrent breaches at other retailers, including kitchenware company OXO International, highlighted ongoing threats to e-commerce platforms during this period. The incident underscored risks associated with payment card data storage and processing in online retail environments without revealing organizational security deficiencies.