View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
December 22, 2014

1.16 million payment cards compromised in Staples hack

The company is now offering free identity protection services for shoppers.

By CBR Staff Writer

Office supply chain store Staples has acknowledged that nearly 1.16 million payment cards might have been compromised in the cyber attack on the company, which took place earlier this year.

According to the findings of the investigation, Staples detected that hackers installed malware to point-of-sale systems at 115 stores across US.

Staples suspects that the attack exposed data for purchases made between 10th August 2014 and 16th September 2014, and in two of its stores the malware might have affected the system from July.

The office supplier also suspects that hackers might have accessed information regarding payment card numbers, cardholder names and card verification codes.

Information regarding fraudulent payment card usage was also detected during the investigation.

The incident took place from April through September, but the investigation concluded that the activities were not related to the malware.

Staples said in a statement: "As a result, and in light of Staples’ commitment to protecting its customers, Staples is offering free identity protection services, including credit monitoring, identity theft insurance, and a free credit report, to customers who used a payment card at any of the affected stores during the relevant time periods."

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

The company also announced that it immediately took action after the detection and has asked users who shopped in the affected stores to review their account statements.

Staples added: "Staples is committed to protecting customer data and regrets any inconvenience caused by this incident."

"Staples has taken steps to enhance the security of its point-of-sale systems, including the use of new encryption tools."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.