On Wednesday, Sears Holdings found a security breach in its Kmart Stores that involved “unauthorized’ credit card activity that followed the purchase of some customers.
The company emailed out a statement, but did not provide exact figures on the amount that was compromised.
Luckily, no personal information, contact details, or social security numbers of customers was obtained over the course of the breach.
Kmart was infected with some form of malicious code which infected the store’s payment data systems. This was not detectible by Kmart’s current antivirus systems, but they were able to find and remove the code later.
A full investigation has been launched. Sears Holdings has hired a third party forensic expert to get its systems reviewed.
They will be working in cooperation with federal law enforcement authorities as well as IT security firms.
Sears Holdings said on Wednesday it found a security breach involving “unauthorized” credit card activity following some customer purchases at its Kmart stores. Certain credit card numbers were “compromised” in the event, the company said in an emailed statement, without providing exact figures. No personal information such as contact details and social security numbers of customers were obtained by those responsible for the breach, Sears said. “There is also no evidence that kmart.com or Sears customers were impacted,” it said. The company said its Kmart store payment data systems were infected with a form of malicious code that was undetectable by its current antivirus systems, adding it was later able to remove the malicious code. Sears has launched an investigation and engaged with third party forensic experts to get its systems reviewed, the company said. It is working with federal law enforcement authorities and IT security firms in the ongoing investigation.