Several companies are dealing with a data breach. According to Reuters, Sears and Delta announced last week that 7.ai, which the companies use, was the victim of a cyber attack back in September of last year. And according to CNET, Kmart and Best Buy were also affected.
Payment information for less than a hundred thousand clients of 7.ai was compromised, Reuters reports. They also note that although the credit card information was “exposed,” Delta has said that doesn’t necessarily mean it was actually used. And Sears has said that their stores themselves weren’t affected and that Sears cards weren’t part of the breach.
CNET also mentions again that no companies have actually said that this payment information was stolen. At this point, what’s clear is that there was a chance for the information of thousands of people to be taken. The period of the cyber security attack was just a couple of weeks—from the 26th of September to the 12th of October (at which point the breach was taken care of).
Despite not knowing whether the information was stolen, Best Buy, at least, is taking action to try to reassure customers. CNET reports that Best Buy plans to provide credit monitoring free to anyone who’s concerned. They’ve also tried to lessen fears by making it clear that purchases made using stolen information won’t hit the person whose information has been stolen.7.ai was quick to make their statement and make clear they were taking the issue seriously. In their statement, they said their service was safe and secure and said they were working with law enforcement and their clients to take care of the issue and any fallout.
Until more information is released, it’s hard to know whether any information was actually taken and used. As a precaution, be sure to keep a close watch on your card statements if you made purchases at these stores.