Best Buy is latest retailer caught up in data breach
Yet another retailer — the fourth in seven days — is involved in a cyberattack.
Best Buy has issued a warning that some of its customers’ payment information may have been compromised in a data cyberattack on the third-party operator of its chat services, a company called (24)7.ai. The breach occurred between Sept. 27 and Oct. 12, 2017.
“As best we can tell, only a small fraction of our overall online customer population could have been caught up in this 7.ai incident, whether or not they used the chat function,” Best Buy stated.
The retailer said it would contact any affected customers directly, and that customers would not be liable for fraudulent charges that resulted from the attack. Additionally, it will offer free credit monitoring services if needed.
On April 4, Delta Airlines and Sears Holdings said that some of their customer payment data may have been compromised in a cyberattack on the same provider, (24)7.ai. Sears said the incident led to unauthorized access to the credit card information of under 100,000 of its customers. On April 3, news broke that Panera Bread’s website leaked customer records for at least eight months.
On April 2, department store giant Hudson’s Bay Co, said it had become aware of “a data security issue involving customer payment card data” at select Saks Fifth Avenue, Saks Off 5th, and Lord & Taylor stores in North America.