Schnucks officials say they have found the issue that has caused reports of unauthorized access to customer's payment card information.
The investigation came after authorities say hackers may have stolen thousands of customers' credit card information after shopping at stores in and around St. Louis, MO.
They say they have taken measures designed to block any further access. The computer forensic firm that Schnucks was working with, found evidence of computer code that would capture the magnetic stripe data on the back of payment cards.
Now that the issue has been identified and contained, the investigation will turn to determining for how long the issue existed and which stores were affected.
They say customers can continue to use credit and debit cards at Schnucks.
"After an extensive review, we confirmed that Schnucks was the victim of a cyberattack," said Chairman and CEO Scott Schnuck. "We have identified the issue and taken comprehensive measures to contain the incident. We are cooperating with law enforcement, the Missouri Attorney General's Office, and the credit card companies to determine the scope and magnitude of this crime and apprehend those individuals making fraudulent purchases. We have been told by the computer forensics expert that the security enhancements we have implemented in the last 48 hours are designed to block this attack from continuing. Our customers can continue using credit and debit cards at our stores. We apologize for any inconvenience this may have caused our customers, and we thank each of them for their patience while we worked hard to investigate their concerns."
Schnucks advises that if customers suspect their cards may have been compromised, they should immediately contact their credit or debit card company, typically a bank or credit union.
Here are some answers from Schnucks officials on some of the most common questions in the this situation:
Is it safe to use my card at Schnucks?
The issue has been identified and contained. The comprehensive measures enacted in the last 48 hours are designed to block this attack from continuing. Customers may continue to use their credit and debit cards at our stores.
How many customers were affected? How many cards compromised?
Now that we have identified and contained the issue, the investigation will focus on determining for how long and at which stores this occurred.
What can I do if my card might be affected?
Schnucks advises customers to immediately contact the bank, credit union, or other financial institution that issued their credit or debit card. The phone number to call is usually on the back of the card.
Now that the issue is contained, could I still experience fraud?
Even though we have contained the attack, any card that was already accessed could still experience fraud. When we identify the cards that may have been accessed, we will work with the credit card companies to notify the banks that issued those cards so those banks can take preventative measures. Even if you have not noticed fraudulent charges, your bank may still cancel and reissue your card.
Why did you wait until now to make this announcement?
Since Schnucks first received notice of this issue, our team and the computer forensics experts we hired have been working non-stop to find and contain the issue. We made this announcement as soon as we finished the work to contain the issue.
Copyright 2013 WFIE. All rights reserved.
1115 Mt. Auburn Road
Public File Contact: