"On March 19, 2014, the FBI informed LaCie that it found indications that an unauthorized person used malware to gain access to information from customer transactions that were made through LaCie’s website," the company shared in the incident notification.
"We have hired a leading forensic investigation firm, who is conducting a thorough investigation, and assisting us in implementing additional security measures. Based on the investigation, we believe that transactions made between March 27, 2013 and March 10, 2014 were affected."
The information that was possibly compromised during the breach includes the customers' name, address, email address, payment card number and card expiration date, and likely even their user names and password.
"As a precaution, we have temporarily disabled the e-commerce portion of the LaCie website while we transition to a provider that specializes in secure payment processing services. We will resume accepting online orders once we have completed the transition," they said, and added that they will be forcing a password reset for all customers.
Customers are advised to be on the lookout for fraudulent charges on their card, and to alert their bank immediately if they spot some. So far, the company hasn't offered any credit and identity theft protection services for free to the affected customers.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.