Michael's, the America's largest chains of arts and crafts stores, announced Thursday that 2.6 million credit and debit cards used in its stores may have been effected by the breach. They also announced their affiliate Aaron Brothers was also attacked, which left an additional 400,000 cards exposed, bring the total breach exposure to 3 million.
Despite the large scale of the breach, Michael's also release that reports of fraud so far have been "limited."
"We want you to know we have identified and fully contained the incident, and we can assure you the malware no longer presents a threat to customers while shopping at Michaels or Aaron Brothers," Michaels Stores CEO Chuck Rubin said in an open letter to customers.
Michaels suffered a data breach at the hands of hackers using sophisticated and largely unprecedented malware in systems containing payment card information at Michaels stores from May 8, 2013 to Jan. 27, 2014, and Aaron Brothers stores between June 26, 2013 and Feb. 27, 2014.
Despite it's large scale, Michaels data breach still pales in comparison to the scope of the Target breach, first reported in December, 2013--wherein 40 million cards were exposed.
What’s Hot” is aggregated content. PYMNTS.com claims no responsibility for the accuracy of the content published by the original source.