Skip To Content
BuzzFeed News Home Reporting To You

Utilizamos cookies, próprios e de terceiros, que o reconhecem e identificam como um usuário único, para garantir a melhor experiência de navegação, personalizar conteúdo e anúncios, e melhorar o desempenho do nosso site e serviços. Esses Cookies nos permitem coletar alguns dados pessoais sobre você, como sua ID exclusiva atribuída ao seu dispositivo, endereço de IP, tipo de dispositivo e navegador, conteúdos visualizados ou outras ações realizadas usando nossos serviços, país e idioma selecionados, entre outros. Para saber mais sobre nossa política de cookies, acesse link.

Caso não concorde com o uso cookies dessa forma, você deverá ajustar as configurações de seu navegador ou deixar de acessar o nosso site e serviços. Ao continuar com a navegação em nosso site, você aceita o uso de cookies.

Kmart Says Credit Card System Breached In Malware Attack

The attack began in September and involved the use of malware. A separate hack reportedly targeted Dairy Queen.

Posted on October 10, 2014, at 6:05 p.m. ET

Rick Wilking / Reuters

Kmart says customer credit card numbers were exposed after criminals used malware to infiltrate the company's data system.

Sears, which owns Kmart, said Friday the data breach began in early September and involved "a form of malware" that current anti-virus systems couldn't pick up. A separate note on Kmart's website described the malware as "similar to a computer virus. Sears spokesman Howard Riefs told BuzzFeed News Friday that additional information about the malware is not yet available.

The breach was detected by the company's security team Thursday. The team removed the malware, but not before debit and credit card numbers were compromised.

Riefs did not say how large the breach was, but when asked if it included everyone who shopped at Kmart between September and Thursday, he responded that it was "potentially those customers."

The company said the breach did not extend to PIN numbers, email addresses, social security numbers, or other personal information. Customers who shopped online at also weren't impacted by the breach, the company said.

Riefs said investigators are still trying to determine who was responsible for the breach.

Sears is encouraging customers who shopped at Kmart during September and early October to reach out to their credit card company if they notice unusual charges. Kmart also is offering credit monitoring protection.

Dairy Queen also announced this week that hackers had accessed customer data.

The fast food chain announced the hack Thursday, saying that between August and October hackers stole customer names, as well as credit and debit card numbers, from 395 stores. The hackers also reportedly took card expiration dates, but did not get other personal information such as social security numbers or PIN numbers.

There are a total of 4,500 Dairy Queen stores in the U.S. The company has published a list of affected stores.

A BuzzFeed News investigation, in partnership with the International Consortium of Investigative Journalists, based on thousands of documents the government didn't want you to see.