By TIME Staff
Staples confirmed on Friday that suspicious cyber activity, first spotted in September, was most likely a malware attack that may have breached 1.16 million credit cards.
A preliminary investigation found evidence of malware installed in the point-of-sales systems at 115 locations. The malware may have given hackers access to cardholder names, credit card numbers and verification codes. The breaches began in late summer and continued until the retailer detected and removed the malware in mid-September.
The company said that affected customers could request free identity protection services and would not be held liable for fraudulent charges.
More Must-Reads From TIME
- The 100 Most Influential People of 2024
- How Far Trump Would Go
- Scenes From Pro-Palestinian Encampments Across U.S. Universities
- Saving Seconds Is Better Than Hours
- Why Your Breakfast Should Start with a Vegetable
- 6 Compliments That Land Every Time
- Welcome to the Golden Age of Ryan Gosling
- Want Weekly Recs on What to Watch, Read, and More? Sign Up for Worth Your Time
Contact us at letters@time.com