If you have purchased anything from NIS America’s online store recently, your data might be at risk, according to a disclosure from NISA last night.
The store, which has now been taken down, was the target of hackers looking to get client information by creating a fake checkout page. The good news is that the damage was limited to a certain criteria, new customers who made a purchase on a card during the period of January 23 to February 26. If you paid with Paypal, or your account was from before that date, you should be fine according to the information NISA has provided.
“After entering their billing, shipping, and payment information, the customer would be temporarily redirected to an offsite web page not owned or operated by NIS America, Inc.,” the company wrote in an email. “This malicious process would record the information provided by the customer during the checkout process, including credit card information, billing address, shipping address, and email address. Afterward, the malicious process would return the customer to the NIS America store page to complete their transaction.”
The publisher advises customers change their passwords and monitor their credit cards for suspicious activity while they investigate the breach. Some customers on social media claim that it is already too late and they have noticed suspicious activities and charges on their cards in recent days.
NISA is best known as the localizer and western publisher for games like the Danganronpa series and Disgaea.
As a matter of recompense, NISA has announced that customers will be given a five dollar voucher toward their next purchase on the store.
[Source: NISA Twitter]
The voucher, while it likely makes quick business sense, feels tone deaf to announce right alongside the news of the breach. They would have been better off just announcing that a few days later.