Hacking - CVS, Rite Aid, Tesco, Walmart and other Online Photo Processing Websites Hacked
July 20, 2015
CVS, Rite Aid, Tesco, Walmart Canada, Sams Club and other retailers have shut down their online photo processing services, after the third-party company PNI Digital Media, which manages their online photo processing websites or photo centers, was hacked. Customers of all the affected photo processing websites manage by PNI Digital Media should check their credit card accounts or statements carefully and notify their financial institution of any unauthorized or suspicious transactions.
Please continue reading below.
PNI Digital Media is a Vancouver, Canada-based company which claims its online photo center service is used by the world’s leading retailers.
The statements below have been posted by some of the affected retailers to help educate their customers about the security breach.
The following statement has been posted by Rite Aid
We recently were advised by PNI Digital Media, the third party that manages and hosts mywayphotos.riteaid.com, that it is investigating a possible compromise of certain online and mobile photo account customer data. The data that may have been affected is name, address, phone number, email address, photo account password and credit card information. Unlike for other PNI customers, PNI does not process credit card information on Rite Aid’s behalf and PNI has limited access to this information. At this time, we have no reports from our customers of their credit card or other information being affected by this issue. While we investigate this issue, as a precaution we have temporarily shut down access to online and mobile photo services.
No other online or mobile transactions are affected. This issue is limited to online and mobile photo transactions involving PNI. RiteAid.com, Rite Aid Online Store, My Pharmacy, wellness+ with Plenti, and in-store systems are not affected.
We take the privacy of customer information very seriously. We apologize for any inconvenience this may cause.
The following statement has been posted by CVSPhoto
We have been made aware that customer credit card information collected by the independent vendor who manages and hosts CVSPhoto.com may have been compromised. As a precaution, as our investigation is underway we are temporarily shutting down access to online and related mobile photo services. We apologize for the inconvenience.
Customers who provided credit card information for transactions on CVSPhoto.com are advised to check their credit card statements for any fraudulent or suspicious activity and to call their bank or financial institution to report anything of concern.
Customer registrations related to online photo processing and CVSPhoto.com are completely separate from CVS.com, optical.cvs.com, cvs.com/MinuteClinic on line bill pay and our pharmacies. Financial transactions on CVS.com, optical.cvs.com, cvs.com/MinuteClinic and in-store are not affected.
Nothing is more central to us than protecting the privacy and security of our customer information, including financial information. We are working closely with the vendor and our financial partners and will share updates as we know more. For more information, call 1-800-SHOP-CVS.
The following statement has been posted by Tesco
Tesco Photo is currently unavailable for routine maintenance
We apologise for any inconvenience this may cause and would love to see you when our site is back online.
You can still visit our shops and print photos from your camera or phone in our Photo Centres or using our instant print kiosks. Available in selected Tesco stores - see our store finder
The following statement has been posted by Walmart Canada’s Photocentre
We were recently informed of a potential compromise of customer credit card data involving Walmart Canada’s Photocentre website, www.walmartphotocentre.ca. Our customers’ privacy is of the utmost importance. We immediately launched an investigation and will be contacting customers who may be impacted. At this time, we have no reason to believe that Walmart.ca, Walmart.com or in-store transactions are affected. As we gather the facts, we recommend Walmart Canada’s Online Photocentre customers monitor their card transactions closely and immediately alert their financial institution about any unauthorized charges.
As a precaution while the investigation continues, we will disable the Walmart Canada Photocentre website and mobile applications. We have also notified the Office of the Privacy Commissioner of Canada and will continue to work proactively with Canada's privacy regulators as the investigation continues.
We are also working closely with our vendor and financial partners and as we have additional information to share, we will.
For questions or concerns, please contact Walmart Customer Service at 1-888-763-4077
The following statement has been posted by SamsClub
The privacy and the security of our members' data are of the utmost importance.in an abundance of caution and as a result of recent reports suggesting a potential security compromise of the third-party vendor that hosts Sam’s Photo website, photo.samsclub.com, we are temporarily suspending access to the site. At this time, we do not believe customer credit card data has been put at risk. This decision does not affect any other Sam’s website or our in-club operations, including in-club photo centers.
Please share with us what you know or ask a question about this article, by leaving a comment below. And, forward malicious email messages to us using the following email address: email@example.com .
Alert and help your family and friends by sharing this article with them: