Kmart added to the list of data breaches
by Carol Thompson
The list goes on.
Sears Holding Corp. has announced a data breach at its Kmart stores that began in early September, according to the company’s SEC filing.
“On October 9, Kmart’s Information Technology team detected Kmart’s payment data systems had been breached and immediately launched a full investigation working with a leading IT security firm,” according to the paperwork filed by Robert Riecker, Vice President. Controller and Chief Accounting Officer.
Company officials said Kmart was able to quickly remove the malware but the chain believes that certain debit and credit cards numbers have been compromised but did not release a number.
Kmart is working with law enforcement, banks, and security firms to investigate the breach, according to the filing. Additionally, the retailer says it is working to improve its security systems.
Yesterday, Alasdair James, President and Chief Member Officer of Kmart issued a statement about the compromise. “Based on the forensic investigation to date, no personal information, no debit card PIN numbers, no email addresses and no social security numbers were obtained by those criminally responsible. There is also no evidence that kmart.com customers were impacted. This data breach has been contained and the malware has been removed.
Thursday, Dairy Queen announced a breach that affected 395 of its stores across the country. Also affected by data breaches this year were Target, Neiman Marcus, Home Depot and Goodwill Industries.
Kmart said it will offer free credit monitoring protection to any customers who shopped in Kmart stores from Sept. 1 to Thursday.
Image: Flickr/Holcombe of Hidalgo