Network Solutions, the well known domain registrar has been hacked for a period of three months. Is still unsure how the code was planted in the sites and where the information was sent using this code. What it is known is that thousands of credit card information (and maybe some other pieces of data) has been transmitted to third party.

Network Solutions is in the proces of notifying the victims. If you have an account in this registrar I would recommend to you to stay alert about any notifications.

This afternoon, Network Solutions notified some of its E-Commerce merchants that certain of their customers’ personal information may have been affected by a data security issue. The details follow:

In the ordinary course of business, Network Solutions identified unauthorized code on servers supporting some of our E-Commerce merchants’ websites. We promptly removed this code, and all of our E-Commerce servers are functioning properly. No servers supporting networksolutions.com were affected.

After conducting an analysis with the assistance of outside experts, we determined that the unauthorized code may have been used to transfer data on certain transactions on approximately 4,343 of our more than 10,000 merchant websites to servers outside the company. On July 13, 2009, we were informed by our outside forensic experts that the data being transferred may have included credit card information. The code may have captured transaction data on approximately 573,928 cardholders. Exposure varied by merchant, but in all cases took place sometime between March 12, 2009 and June 8, 2009. Transactions after June 8 were not exposed to the unauthorized code. We have notified law enforcement and are working closely with them in their investigation.

At this point, we have no reports or other reasons to believe that any credit card account information has been misused and, under established practice, credit card issuing companies generally will not hold merchants’ customers liable for any fraudulent purchases made using their credit card account numbers that are reported in a timely way to the issuer.

We are arranging for a leading credit reporting agency to work with us, on behalf of our merchants, to contact our merchants’ customers whose data may have been affected and to provide services that will help potentially affected U.S. based customers protect their information. These services will be provided free of charge to our merchants and their U.S. based customers, and notifications to them will be going out within the next few days.

Our customers’ ability to rely on the safety of our solutions is our highest priority. We are deeply sorry for any concern or inconvenience this may cause our merchants or their customers.

We are here for our customers and if you have any questions, please visit our FAQ at http://www.careandprotect.com/merchant-info/faq.html for points of contact and other detailed information. If this doesn’t answer your questions, please feel free to leave a comment or reach out to listen@networksolutions.com

El famoso sistema de registro de dominios Network Solutions sufrió por mas de tres meses una fuga de datos en la que miles de tarjetas de creditos (y posiblemente otra información) fué enviada a terceros. La empresa desconoce por el momento cómo plantaron el código malicioso pero están seguros de que hubo fuga de datos. En este momento están en el proceso de notificar a los perjudicados. Tmapoco se conoce a dónde fueron enviados los datos.

Si usted tiene dominios en esta empresa le recomendamos estar atentos a cualquier notificación.

This afternoon, Network Solutions notified some of its E-Commerce merchants that certain of their customers’ personal information may have been affected by a data security issue. The details follow:

In the ordinary course of business, Network Solutions identified unauthorized code on servers supporting some of our E-Commerce merchants’ websites. We promptly removed this code, and all of our E-Commerce servers are functioning properly. No servers supporting networksolutions.com were affected.

After conducting an analysis with the assistance of outside experts, we determined that the unauthorized code may have been used to transfer data on certain transactions on approximately 4,343 of our more than 10,000 merchant websites to servers outside the company. On July 13, 2009, we were informed by our outside forensic experts that the data being transferred may have included credit card information. The code may have captured transaction data on approximately 573,928 cardholders. Exposure varied by merchant, but in all cases took place sometime between March 12, 2009 and June 8, 2009. Transactions after June 8 were not exposed to the unauthorized code. We have notified law enforcement and are working closely with them in their investigation.

At this point, we have no reports or other reasons to believe that any credit card account information has been misused and, under established practice, credit card issuing companies generally will not hold merchants’ customers liable for any fraudulent purchases made using their credit card account numbers that are reported in a timely way to the issuer.

We are arranging for a leading credit reporting agency to work with us, on behalf of our merchants, to contact our merchants’ customers whose data may have been affected and to provide services that will help potentially affected U.S. based customers protect their information. These services will be provided free of charge to our merchants and their U.S. based customers, and notifications to them will be going out within the next few days.

Our customers’ ability to rely on the safety of our solutions is our highest priority. We are deeply sorry for any concern or inconvenience this may cause our merchants or their customers.

We are here for our customers and if you have any questions, please visit our FAQ at http://www.careandprotect.com/merchant-info/faq.html for points of contact and other detailed information. If this doesn’t answer your questions, please feel free to leave a comment or reach out to listen@networksolutions.com