Criminals May Have Stolen Customer Credit Card Data from Wacom’s Online Store

Japan-based graphics tablet manufacturer Wacom recently notified customers that threat actors may have stolen their credit card details from its online store.

Cybercrooks harvested data from Wacom’s online store

A security incident exposed customer data to cybercriminals, who exfiltrated data from the graphic tablet maker’s online store for weeks, according to a security advisory by Wacom.

The company believes threat actors compromised its website at the end of November and managed to maintain access until early January.

"While we are still investigating, we believe it may have occurred between November 28, 2024 and January 8, 2025,” Wacom disclosed in a breach notification email, as The Register reports. "The issue that contributed to the incident has been addressed and is effectively being investigated. However, we are now writing only to customers who might have been potentially affected by this."

Not all customers are impacted

As the email suggests, not all customers may have been affected by the security incident. However, Wacom’s advisory included a series of recommendations for those whose sensitive details might have been exposed:

Monitor your credit card statements for any unauthorized activity.

Contact your credit card issuer immediately if you see any suspicious charges.

Consider placing a fraud alert on your credit card.

Currently, there are no details about the full extent of the breach, including how many customers may have been compromised, the identity of the perpetrators or the modus operandi.

Despite the company’s omission of additional information about the attack, the consensus revolves around threat actors injecting a payment page skimmer on the company’s website.

Staying one step ahead of data breaches

Unfortunately, data breaches strike indiscriminately and without warning, and the cunning of threat actors significantly increases this incidence.

However, dedicated software like Bitdefender Digital Identity Protection can help you remain prepared for nefarious scenarios by letting you know the whereabouts of your online data.

It encompasses a comprehensive overview of your digital footprint, including traces from services you no longer use, continuously scans the public and Dark Web for your data and instantly notifies you of breaches that could jeopardize it.

Additionally, it lets you patch weak points in your online identity by providing one-click, quick-action items.