Another US retail firm has admitted to a severe data breach, as Michaels Stores said data relating to three million credit cards was compromised thanks to malware attacks on the firm.
A number of Michaels branches, which deal in arts and crafts, saw their point of sale terminals hacked, in much the same way Target stores were compromised. The attacks, which took place between 8 May 2013 and 27 January 2014, affected 2.6 million cards.
Malware was also found on machines at Aaron Brothers, a Michaels property, with 400,000 cards potentially affected.
The firm said it had “received a limited number of reports from the payment card brands and banks of fraudulent use of payment cards potentially connected to Michaels or Aaron Brothers”.
The affected data included payment card number and expiration date. There was no evidence other customer personal information, such as name, address or PIN were affected by the data breach.
“We are committed to assisting affected customers by providing fraud assistance, identity protection and credit monitoring services. Importantly, with this incident now fully contained, we can assure customers this malware no longer presents a threat to shoppers at Michaels or Aaron Brothers,” said Michaels CEO Chuck Rubin.
“In an era where very sophisticated and determined criminals have proven capable of successfully attacking a wide range of computer networks, we must all increase our level of vigilance. Michaels is committed to working with all appropriate parties to improve the security of payment card transactions for all consumers.”
Love IT security? Try our quiz!
Industry supply chain analyst says Apple cut orders for the iPhone 16 for Q4 2024…
Heavy fine for LinkedIn, after Irish data protection watchdog cites GDPR violations with people's personal…
UK competition regulator begins phase one investigation into Alphabet's partnership with AI startup Anthropic
After alerting the US of an attempt to circumvent US export controls, TSMC halts chip…
Fresh win for Intel after Europe top court upholds annulment of billion-euro antitrust fine imposed…
News Corp surprises Perplexity, after the media group sued the AI search engine for allegedly…