April 3, 2018 — Panera Bread Website Leaks
Lisa Baergen, Director at NuData, comments on a report issued yesterday by Information Security Buzz disclosing the discovery that Panera Bread left the information of up to 37 million customers who signed up for delivery and other services including “names, email and physical addresses, birthdays and the last four digits of the customer’s credit card number” in plain text format accessible via its web site.
The most proven and effective solutions for protecting customer are readily available and increasingly widely implemented: multi-layered security solutions that incorporate verification via passive biometrics, without adding friction, by evaluating a consumer’s inherent behaviour online during the transaction process. This field-proven approach lets the company confirm that a consumer is legitimate or a would-be fraudster before loss to the company can occur, even if the correct data – perhaps stolen – was used. And it also prevents the company’s reliance on the sort of personally identifiable customer data that’s once again been leaked. Ultimately, the shift to more advanced multi-layered solutions will, over time, render stolen information valueless to cybercriminals, as passive biometric verification defies use by third parties.
For the complete article, go here.