Sponsored By

Best Buy the Latest Victim of Third-Party Security Breach

Retailer says customer payment and other information may have been exposed via the breach of [24]7.ai online chat provider.

Dark Reading Staff

April 9, 2018

1 Min Read

Best Buy last week joined Sears Holding Corp. and Delta Airlines in disclosing that their customer data was exposed via a breach of online chat provider [24]7.ai.

The electronics retailer said its customers' payment information may have been compromised between Sept. 27 and Oct. 12, the timeframe [24]7.ai said it had suffered a security breach

"Since we were notified by [24]7.ai, we have been working to determine the extent to which Best Buy online customers' information was affected. We have done that in collaboration with our third-party vendor and have notified law enforcement. As best we can tell, only a small fraction of our overall online customer population could have been caught up in this [24]7.ai incident, whether or not they used the chat function," Best Buy said in an April 5 statement on its website. 

Best Buy's revelation follows that of Sears and Delta Airlines. Sears last week said credit card information belonging to about 100,000 of its customers may have been stolen during online transactions, and Delta said names, addresses, card numbers, CVV numbers, and card expiration dates of potentially several hundred thousand customers were exposed via the [24]7.ai breach.

Read more from Best Buy here

Interop ITX 2018

Join Dark Reading LIVE for two cybersecurity summits at Interop ITX. Learn from the industry’s most knowledgeable IT security experts. Check out the security track here. Register with Promo Code DR200 and save $200.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights