Checkout.com has published a statement from Chief Technology Officer, Mariano Albera, regarding a data incident involving a legacy, third-party cloud file storage system.
Last week, we were contacted by a criminal group known as "ShinyHunters," who claimed to have obtained data connected to this old system and demanded a ransom.
We want to assure merchants, partners and the public that this incident has not impacted our payment processing platform. The threat actors do not have, and never had, access to merchant funds or card numbers.
We are working with law enforcement and the relevant regulators and have begun the process to identify and contact those who may have been impacted. We have made the decision not to be extorted by criminals; instead, we are donating the ransom amount to cyber security research at Carnegie Mellon University and the University of Oxford Cyber Security Center (OXCIS) to support their research in the fight against cybercrime.
Security, transparency and trust are the foundation of our industry. For a full statement on the incident and our response, please visit our blog here.