A malware attack has compromised credit card data kept by a third party on behalf of America’s Thrift Stores. They are a chain of charity-based thrift stores in the southeast and are headquartered in Irondale.
A statement released by CEO Kenneth Sobaski says:
The U.S. Secret Service tells us that only card numbers and expiration dates were stolen. They do not believe any customer names, phone numbers, addresses or email addresses were compromised. This breach may have affected sales transactions between September 1, 2015 and September 27, 2015. If you used your credit or debit card during this time to purchase an item at any America’s Thrift Store location, the payment card number information on your card may have been compromised.
The statement does not make mention on the estimated number of transactions that were affected, but, if you shopped at any of their stores between September 1, 2015 and September 27, 2015, your information was likely compromised. In instances such as this, it is unlikely that notifications will be sent.
The information is believed to only be payment information, and not personal information.
I highly recommend taking a proactive approach and act immediately if you think you may have been included. Use a website like Credit Karma to keep an eye on your credit reports and Mint to look out for suspect bank transactions. (Both sites I use personally and vouch for them. Let us know if you’d like help setting them up.)
America’s Thrift Stores will not be providing identity monitoring in connection to this breach. Please be vigilant!
You have the option of placing a “fraud alert” on each of your credit reports with the major credit reporting agencies. This will flag your credit report and request creditors to contact you prior to establishing accounts in your name. Go online or call each of the major bureaus for more information: Experian, Equifax, and TransUnion.