BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Barnes & Noble says PIN pads in 63 stores hacked

From: security curmudgeon <jericho () attrition org>
Date: Tue, 23 Oct 2012 23:27:08 -0500 (CDT)

http://news.yahoo.com/barnes-noble-says-pin-pads-63-stores-hacked-023657958.html

Barnes & Noble says PIN pads in 63 stores hacked
Associated Press

NEW YORK (AP) . Barnes & Noble Inc. said Tuesday that devices used by 
customers to swipe credit and debit cards have been tampered with in 63 of 
its stores in nine states.

The company warned customers to check for unauthorized transactions and to 
change their personal identification numbers, or PINs. It didn't say how 
many accounts may have been compromised.

But The New York Times, citing a high-ranking company official it did not 
name, reported that hackers had made unauthorized purchases on some 
customer credit cards.

The New York-based bookseller said in a statement Tuesday only one of the 
devices, known as PIN pads, was tampered with in each of the 63 stores. 
The stores are in California, Connecticut, Florida, Illinois, 
Massachusetts, New Jersey, New York, Pennsylvania and Rhode Island.

All the PIN pads in its nearly 700 stores nationwide were disconnected on 
Sept. 14 after the company learned of the tampering. Federal authorities 
are helping in its investigation.

[..]

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
Previous By Date Next
Previous By Thread Next

Current thread: