CHICAGO, Nov. 28, 2014 /PRNewswire/ -- On November 3, 2014, SP+, a professional parking facility service provider, received a notice from the company that provides and maintains the payment card systems in some of its parking facilities that an unauthorized person used that company's remote access tool to connect to computers that process payment cards in a limited number of those facilities. Upon learning this, SP+ immediately launched an investigation and engaged a leading computer forensic firm to examine the payment systems in the parking facilities.
The unauthorized person used the remote access tool to install malware that searched for payment card data that was being routed through the computers that accept payments made at the parking facilities. While SP+ was conducting this investigation, it identified one additional facility where card data was at risk. The information from payment cards that may have been captured by the malware is the cardholder's name, card number, expiration date, and verification code.
This incident affected 17 SP+ parking facilities. Though SP+ does not have sufficient information to identify whether any specific cards were taken or to mail notification letters to the potentially affected cardholders, SP+ wanted to let its customers know about this incident as soon as it could.
| FACILITY |
CITY |
EARLIEST AT RISK |
LAST AT RISK |
| 55 EAST MONROE |
CHICAGO |
9/29/2014 |
10/29/2014 |
| AON CENTER |
CHICAGO |
9/29/2014 |
10/30/2014 |
| JOHN HANCOCK GARAGE |
CHICAGO |
9/29/2014 |
11/4/2014 |
| 1460 N. HALSTED (BlackHawk) |
CHICAGO |
9/29/2014 |
10/29/2014 |
| 10 E. ONTARIO |
CHICAGO |
9/29/2014 |
10/29/2014 |
| CUMBERLAND CTA |
CHICAGO |
9/29/2014 |
10/29/2014 |
| 500 W MONROE |
CHICAGO |
9/29/2014 |
10/29/2014 |
| AQUA |
CHICAGO |
9/29/2014 |
10/29/2014 |
| PRESIDENTIAL TOWERS |
CHICAGO |
9/29/2014 |
10/31/2014 |
| 120 NORTH LASALLE |
CHICAGO |
10/6/2014 |
10/29/2014 |
| GATEWAY EAST GARAGE |
CLEVELAND |
10/8/2014 |
10/23/2014 |
| CHURCH GARAGE |
EVANSTON |
10/8/2014 |
10/26/2014 |
| MAPLE GARAGE |
EVANSTON |
10/8/2014 |
11/10/2014 |
| SHERMAN GARAGE |
EVANSTON |
10/8/2014 |
11/1/2014 |
| 1700 MARKET STREET |
PHILADELPHIA |
10/8/2014 |
10/22/2014 |
| NATIONAL CONSTITUTION CENTER |
PHILADELPHIA |
10/8/2014 |
10/22/2014 |
| 520 PIKE GARAGE |
SEATTLE |
4/14/2014 |
10/31/2014 |
If a customer used his or her card at one of these locations between the earliest and last at risk dates, the customer should review his or her account statements for any unauthorized activity regularly. If a customer sees any unauthorized charges, the customer should contact the bank that issued the card. The credit card companies typically guarantee that cardholders will not be responsible for fraudulent charges.
SP+ has notified its payment processor, which is working with the credit card companies to provide them with the account numbers for cards used during the period at issue so that the banks that issued those cards can be alerted. When banks receive these alerts, they can conduct heightened monitoring of transactions to detect and prevent unauthorized charges.
The malware has been disabled on all affected servers, and SP+ has required that the vendor convert to the use of two-factor authentication for remote access. SP+ is working with the computer security firm to implement additional enhanced security measures. Customers can feel confident in continuing to use their cards at the affected locations.
SP+ deeply regrets any inconvenience this incident may cause. If a customer has any questions please call SP+ at 1-877-717-0004, Monday through Friday, 7:00 AM to 7:00 PM Central Standard Time.
About SP+
SP Plus provides professional parking, ground transportation, facility maintenance, security and event logistics services to property owners and managers in all markets of the real estate industry. The Company has more than 23,000 employees. Its Standard Parking and Central Parking brands operate approximately 4,200 parking facilities with over 2.1 million parking spaces in hundreds of cities across North America, including parking-related and shuttle bus operations serving more than 75 airports. USA Parking System, a wholly owned subsidiary, is one of the premier valet operators in the nation with more four and five diamond luxury properties, including hotels and resorts, than any other valet competitor. The Company's ground transportation division transports over 41 million passengers each year; its facility maintenance division operates in dozens of U.S. cities; and its security subsidiary provides licensed security services in six states. The Company also provides a wide range of event logistics services. For more information, visit www.spplus.com.
To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/sp-acts-to-block-payment-card-security-incident-300002050.html
SOURCE SP+
Related Links
WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?
Newsrooms &
Influencers
Digital Media
Outlets
Journalists
Opted In
Share this article