CEO Response to Reported Breach
Superion CEO Simon Angove released this message regarding a reported breach.
Protecting our customers and their clients’ data is of the utmost importance to Superion. Recently we received reports of suspicious activity involving a small number of our customers’ computer networks, including possible attempts to steal personally identifiable information. We immediately launched an investigation into the reported incidents and engaged a leading PCI forensic investigation firm to assist in our efforts. We have notified Superion customers about the suspicious activity and have continued to work closely with the small number of affected customers throughout our investigation. As part of our investigation we have identified and notified our customers of certain potential vulnerabilities in the security of their network and provided them with recommendations for addressing the same.
The incidents appear to be limited to the networks of some on premise Superion customers. While Superion does not control our customers’ networks, we and our forensic investigator have found no evidence of credit card scrapers or evidence of credit card data extraction on any server we’ve analyzed.
We remain committed to helping our customers swiftly resolve this matter. In the meantime, Superion customers should continue to follow cyber security best practices, including applying all available software updates and security patches to all applications running on their networks. Individual consumers should closely monitor their payment card account statements. If there are unauthorized charges, individuals should immediately notify their bank. Payment card network rules generally state that cardholders are not responsible for such charges.