CVS Warns Photo Website Likely Hacked, Credit Card Data ‘May Have Been

CVS notes that any in-store transactions, including those done through its kiosks, are safe from the potential breach.

Woonsocket, Rhode Island-based CVS Health Corp. said Friday that payment information on the site is collected by an outside vendor, which it identified as Canada-based PNI Digital Media. PNI describes its services as a “proprietary transactional software platform”.

Customer credit score card knowledge “might have been compromised”, the pharmacy defined. As indicated by Krebs, PNI gives its providers to retailers together with Costco, Walmart…

CVS did not name the other company.

Shoppers of CVS stores and CVS.com should be confident that their information was not affected by the possible breach of CVSPhotos.com. If you do conduct business through CVS Photos online service, keep an eye on your credit card statements and report any suspicious activity.

“Customer registrations related to online photo processing and CVSPhoto.com are completely separate from CVS.com and our pharmacies”, the statement reads.

“As a precaution, as our investigation is underway, we are temporarily shutting down access to online and related mobile photo services”, the message stated. “We apologize for the inconvenience”, Mike DeAngelis, CVS’ director of public relations said via email. We are working closely with the vendor and our financial partners and will share updates as we know more.