UPS has notified UPS Store customers that their information may have been compromised thanks to a malware attack that affected 51 retail locations across the country.
After being notified by a government bulletin on a ‘broad-based malware intrusion’, UPS identified malware on systems in 51 of 4.470 franchised UPS Store locations. This works out to about one percent of all stores in the country. Apparently, 105,000 individual transactions were affected.
UPS says that customers who used a credit card at any of these stores between January 20th and August 11th of this year may have been exposed. UPS says that they have eliminated all traces of the malware.
“I understand this type of incident can be disruptive and cause frustration. I apologize for any anxiety this may have caused our customers. At The UPS Store the trust of our customers is of utmost importance,” said Tim Davis, President The UPS Store, Inc. “As soon as we became aware of the potential malware intrusion, we deployed extensive resources to quickly address and eliminate this issue. Our customers can be assured that we have identified and fully contained the incident.”
You can check here for a list of those 51 locations, which are spread across 24 states. Names, postal addresses, email addresses, and even payment card information could have been exposed during the data breach, but UPS says there has been no evidence of any fraudulent activity arising from stolen information. Additionally, like many targeted companies before then, UPS is offering free identity protection and credit monitoring services to those potentially affected.
Image via Wikimedia Commons