Staples: Data Breach Exposes Million Cards

http://www.wsj.com/articles/staples-data-breach-affected-1-16-million-cards-1419024209

Staples Inc. said criminals stole personal information from as many as 1.16 million payment cards during the back-to-school shopping season at stores from California to Massachusetts.


The Framingham, Mass., company said machines were infected at 113 stores with malicious software that compromised customer data from Aug. 10 through Sept. 16. At two stores, the hack started in July, Staples said. (Click to see the full list of 115 stores affected.)

Staples didn’t identify the attackers but said the malware got into its point-of-sale systems, which include the cash registers and terminals that handle credit card and debit card transactions. The company said it believes the hackers may have got access to shoppers’ names, card numbers, expiration dates and card verification codes.

The theft at Staples is the latest in a parade of high-profile attacks on big U.S. retail chains over the past year. The biggest ones were on Home Depot Inc. over this spring which affected 56 million card accounts and a year ago at Target Corp. , in which hackers stole information from 40 million cards.

in case of paywall: http://news.google.com/news/url?sr=1&ct2=us%2F0_0_s_4_1_a&sa=t&usg=AFQjCNE3LTvFYR5tbpTR-kWtkkX0Ii6seA&cid=52778688208450&url=http%3A%2F%2Fwww.wsj.com%2Farticles%2Fstaples-data-breach-affected-1-16-million-cards-1419024209&ei=hbKUVOH9H9P2gAfyiIDwDw&sig2=jGRbYtUWD-n5TgcNpe_uqA&rt=HOMEPAGE&vm=STANDARD&bvm=section&did=6904180733955538334&ssid=b