Staples detects point-of-sale data security breach

Tuesday 30 December 2014 08:28 CET | News

Data security experts from Staples have detected that criminals deployed point-of-sale malware at 115 of its US retail stores in mid-September 2014.

Overall, the company believes that approximately 1.16 million payment cards may have been affected. Upon detection, Staples immediately took action to eradicate the malware and to boost its security. Staples also retained outside data security experts to investigate the incident and has worked closely with payment card companies and law enforcement on this matter.

Based on its investigation, Staples believes that malware may have allowed access to some transaction data at affected stores, including cardholder names, payment card numbers, expiration dates, and card verification codes. At 113 stores, the malware may have allowed access to this data for purchases made from August 10, 2014 through September 16, 2014. At two stores, the malware may have allowed access to data from purchases made from July 20, 2014 through September 16, 2014.

During the investigation Staples also received reports of fraudulent payment card use related to four stores in Manhattan, New York at various times from April through September 2014.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: Staples, point-of-sale, security breach, data security, online security, digital identity, web fraud
Categories: Fraud & Financial Crime
Countries: World
This article is part of category

Fraud & Financial Crime

Industry Events