UPS Stores have reported that malware has been found on Point of Sale (PoS) systems in 51 stores around the country including one locally on Keystone Avenue. Twenty-four states are reported to have stores affected by this malware.
This particular malware went undetected for quite sometime as it was not caught by anti-virus software. The malware found is believed to have compromised credit and debit card information, as well as postal and email addresses.
The breach includes approximately 100,000 transactions between January 20, 2014 and August 11, 2014, dates vary by specific location. UPS spokesman Chelsea Lee has said the company is not currently aware of any fraud related to the attack.
If you or anyone you know has shopped with a credit card at the Keystone Avenue location or any other UPS Store make sure you take necessary steps to protect yourself and pass the information on to others who may also be affected. Currently the UPS Store's advisory says they do "not have sufficient customer information to contact potentially affected customers." So it is now to the communities and social media to spread this information so anyone who may have been affected can act before they experience any kind of credit / debit card fraud.
From Tim David, President of The UPS Store, "Please know we take our responsibility to protect customer information seriously and have committed extensive resources to addressing this incident. We understand this type of incident can be disruptive and apologize for any anxiety this may have caused."
If you shopped at The UPS Store and are concerned you're at risk make sure you make use of the free credit monitoring being offered. For a full list of affected stores, see below. For the Data Security Incident Information or All Clear ID protection being offered click here.
This is another example of the kind of PoS malware previously seen in the Target breach. It seems clear that PoS malware is becoming a larger and more serious threat to retail stores and it is important companies take steps toward securing their Point of Sale systems.