Oregon Retailer Suffers Sustained Data Breach

Oregon Retailer Suffers Sustained Data Breach

Customers of an Oregon retailer have become victims of fraud after their financial information was exposed in a sustained data breach.

Data belonging to thousands of customers of Made in Oregon was compromised in a breach that lasted six months. Made in Oregon is a regional vendor with five stores in the Portland area.

According to the gift retailer, an unauthorized party gained access to its e-commerce site between the first week of February 2020 and the last week of August 2020. 

Last week, Made in Oregon sent letters to 7,800 customers who purchased gifts from its online store during the period when the breach occurred. 

Customers were warned that their name, billing address, shipping address, email address, and credit card information may have been compromised.

Made in Oregon is aware of a small number of customers who have become victims of fraud after their credit card data was exposed in the breach and is working with law enforcement to investigate the security incident.

“We think the actual number of people who had their cards used fraudulently was very, very small," company owner Verne Naito told OregonLive. "But having said that, anybody who (made a purchase) on our site was potentially compromised, which is why we immediately came forward.”

Naito said that customers who made purchases over the phone during the breach period had not been affected by the security ..