By Jim Donovan
Some customers of The UPS Store may have had their credit and debit card information exposed by a computer virus found on systems at 51 stores in 24 states, including a store in Cherry Hill, New Jersey
A spokeswoman for The UPS Store says the information includes names, card numbers and postal and email addresses from about 100,000 transactions between Jan. 20 and Aug. 11.
United Parcel Service Inc. said Wednesday that it was among U.S. retailers who got a Department of Homeland Security bulletin about the malware on July 31. The malware is not identified by current anti-virus software. The company says is not aware of any fraud related to the attack.
Atlanta-based UPS said it hired a security firm that found the virus in systems at about 1 percent of the company’s 4,470 franchised locations. At many stores, the intrusion did not begin until March or April.
A company spokeswoman said that the problem was fixed by Aug. 11 and the company took additional steps to protect systems at other stores. She said the affected stores were not linked electronically, and UPS is still investigating how they were compromised.
The UPS Store is offering identity protection and credit monitoring services to impacted customers. In order to take advantage of this service, please visit https://theupsstore.allclearid.com. In addition, customers are encouraged to closely monitor their card account activity and take other steps to help protect themselves outlined in the customer letter below. The UPS Store representatives are available at 1-855-731-6016 for additional assistance.
To see the full list of the 51 locations of The UPS Store where malware was discovered visit: www.theupsstore.com/security