Payment Gateway Provider Slim CD Suffers Data Breach Affecting 1.7 Million Individuals

Payment service provider Slim CD has reported a hacker attack and data breach that compromised the bank card and personal information of nearly 1.7 million people.

Slim CD is an American provider of payment processing solutions, enabling businesses to accept electronic and card payments through web terminals, mobile, and desktop applications.

Details of the Incident

In a notification sent to affected customers this week (totaling about 1.7 million individuals), the company revealed that hackers maintained access to its network for almost a year—from August 2023 to June 2024. Suspicious activity was first detected on June 15, 2024, but an internal investigation found that the attackers had gained access as early as August 17, 2023.

According to company representatives, the attackers accessed and viewed bank card data only during a two-day window, between June 14 and June 15, 2024.

What Information Was Compromised?

The following data may have been exposed to the hackers:

• Full name of the user
• Physical address
• Bank card number
• Card expiration date

Although CVV codes were not among the leaked data, the risk of fraud remains significant. The company advises users to stay vigilant and to report any signs of fraud or identity theft to their card issuer as soon as possible.

Company Response and Recommendations

Slim CD states that it has taken steps to strengthen security and prevent similar incidents in the future, though specific measures were not disclosed. Federal law enforcement and regulatory agencies have also been notified about the breach.