Network Solutions identified unauthorized code on servers supporting some of their e-commerce merchants’ websites. The code has been removed and no servers supporting networksolutions.com were affected.
After conducting an analysis with the assistance of outside experts, Network Solutions determined that the unauthorized code may have been used to transfer data on certain transactions for approximately 4,343 of more than 10,000 of the merchant websites to servers outside the company.
On July 13, 2009, they were informed by their outside forensic experts that the data being transferred may have included credit card information. The code may have captured transaction data from approximately 573,928 cardholders for certain periods this spring.
Exposure varied by merchant, but in all cases took place sometime between March 12, 2009 and June 8, 2009. Transactions after June 8, 2009 were not exposed to the unauthorized code.