Sears Holdings Also Discloses Data Security IncidentThe matter involved the retailer's online support services provider, [24]7.ai.

[Collection]Add Sears Holdings Corp. to the list of companies that have had to notify customers about a data breach. Sears said it was notified by [24]7.ai, a company that provides online support services to both Sears and Kmart, of a security incident last fall. Sears said, “We believe this incident involved unauthorized access to less than 100,000 of our customers’ credit card information.” The retailer also said that it was notified in mid March of the incident, after which it contacted credit card companies to prevent potential fraud. Sears said it launched a thorough investigation with federal law enforcement authorities, its banking partners and IT security firms. That probe led Sears to conclude that credit card information for some customers who transacted online between Sept. 27, 2017 and Oct. 12, 2017 may have been compromised. Anyone using a Sears-branded credit card is not impacted by the security incident. Also Sears emphasized that there is “no evidence” that its stores were compromised or that any internal Sears systems were accessed by those responsible. Sears said its top priority is to determine which customers might have been impacted and to notify and assist them in “any way possible.” The company said it would post updates

Follow WWD on Twitter or become a fan on Facebook.

Read More...http://wwd.com/business-news/financial/sears-holdings-corp-also-discloses-data-security-incident-1202644315/