BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Sally Beauty investigating a possible second data breach

From: Audrey McNeil <audrey () riskbasedsecurity com>
Date: Mon, 4 May 2015 18:31:55 -0600
http://www.bizjournals.com/dallas/news/2015/05/04/sally-beauty-investigating-a-possible-second-data.html

Sally Beauty Holdings Inc. (NYSE: SBH) has launched an investigation
following “unusual activity involving payment cards” in some of its U.S.
stores during the week of April 27.

The Denton-based company said in a statement on Monday that it is
partnering with law enforcement and its credit card processor to “ensure
our customers are protected” from a possible breach of credit card data.

“Until this investigation is completed, it is difficult to determine with
certainty the scope or nature of any potential incident, but we will
continue to work vigilantly to address any potential issues that may affect
our customers,” the statement reads.

The breach is not Sally Beauty’s first. In March 2014, the company said
roughly 25,000 customer records were hacked, but added that it believed it
had shut down the attack.

Sally, along with other hacked merchants such as fellow North Texas
merchant Neiman Marcus, are required to upgrade their checkout terminals by
October to accept computer chip-embedded credit cards. The technology is
supposed to make hacking payment data more difficult.

Sally Beauty distributes beauty products through 4,900 stores in more than
a dozen countries. Through its two business unites, Sally Beauty Supply and
Beauty Systems Group, the company brought in around $3.8 billion in annual
revenue and $246 million in net earnings during fiscal year 2014.

The company said it could not give any further information on the breach.
Since the announcement, Sally's stock has declined 1.15 percent to $30.92
per share.

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus 
on the right security.  If you need security help or want to provide real risk reduction for your clients contact us!
Previous By Date Next
Previous By Thread Next

Current thread: