#CyberFLASH: Walmart admits photo centre customers’ data hacked

image-2Walmart Canada has told customers who used its photo centre from June 2014 to July 2015 that their credit card data and other personal information has been compromised.

Last July, the retailer took down the photo centre website and mobile applications operated by PNI Digital Media, based in Vancouver and owned by Staples Inc. It also notified those who used the photo centre during the period of a possible data breach.

In new emails dated Nov. 4, Walmart said its investigation showed an unauthorized party used “malware” – or malicious software – on some of PNI’s servers supporting its retail clients, including some servers that hosted the Canadian photo centre site.

“The malware is designed to collect credit card and other personal information customers provide when placing an order, including name, email and account password. The malware is not designed to capture images or photos uploaded by customers or to capture a customer’s PIN (personal identification number),” the company said.

“At this point, we are not able to confirm whether any personal customer information potentially collected by the malware was misused by a third party.”

The emails, signed by Walmart Canada Photo Centre Team, told customers to contact their financial institutions if they saw irregular credit card activity and change the passwords used at other sites if they were the same as at the Walmart photo site.

“We sincerely apologize for the inconvenience this has caused and thank you for your patience,” the email said.

Read more here

About canux
© 2013 CyberTRAX Canada - All Rights Reserved.
Sponsored by C3SA Corp.