Sally Beauty Holdings Inc., which previously disclosed a data
breach, said malware was used on some of its point-of-sale systems
in March and April.
The beauty supplies retailer said some payment-card information
may have been put at risk, but added that it doesn't collect or
store PIN data and therefore "has no reason to believe" PINs were
affected.
Sally Beauty is offering credit-monitoring services to customers
who used payment cards at U.S. stores between March 6 and April
17.
The company said on May 4 that it was investigating reports of
unusual card activity. Sally Beauty also suffered a data breach in
early 2014.
High-profile attacks against retailers have included a 2014
intrusion against Home Depot Inc. that affected 56 million card
accounts, and a 2013 Target Corp. breach in which hackers stole
information from 40 million cards.
The incidents have led to renewed calls for merchants to upgrade
their checkout terminals to accept cards that are embedded with
computer chips that are more difficult for thieves to
replicate.
Write to Josh Beckerman at josh.beckerman@wsj.com
Access Investor Kit for The Home Depot, Inc.
Visit
http://www.companyspotlight.com/partner?cp_code=P479&isin=US4370761029
Access Investor Kit for Sally Beauty Holdings, Inc.
Visit
http://www.companyspotlight.com/partner?cp_code=P479&isin=US79546E1047
Access Investor Kit for Target Corp.
Visit
http://www.companyspotlight.com/partner?cp_code=P479&isin=US87612E1064
Subscribe to WSJ: http://online.wsj.com?mod=djnwires