Several online stores of the Warner Music Group (WMG) were compromised and what appears to be web skimmers were installed.
They have issued the following statement :-
“On August 5, 2020, we learned that an unauthorized third party had compromised a number of US-based e-commerce websites WMG operates but that are hosted and supported by an external service provider. This allowed the unauthorized third party to potentially acquire a copy of the personal information you entered into one or more of the affected website(s) between April 25, 2020 and August 5, 2020.”
Any personal information you entered into one or more of the affected website(s) between April 25, 2020 and August 5, 2020 after placing an item in your shopping cart was potentially acquired by the unauthorized third party.
This could have included your name, email address, telephone number, billing address, shipping address, and payment card details (card number, CVC/CVV and expiration date). Payments made through PayPal were not affected by this incident.
Warner Music is now offering free credit monitoring for affected users through Kroll.