The notification letter was sent to everybody who used their card to make a purchase at any one of Costco‘s affected locations. According to the letter, the customers’ names, card numbers, card expiration dates, and even the CVV numbers may have been accessed by the card skimmers. The company urged shoppers to go through their credit card and bank statements for any suspicious charges and notify the relevant card issuers.
The news was broken by Bleeping Computer, after which Costco told Fox Business that the wholesaler “promptly removed the skimmers, notified law enforcement, and engaged a forensics firm to analyze the devices.” While Costco deals with the data breach and investigates the full extent of it, the chain is offering a year of IDX theft protection services for free. Those who received an enrollment code from Costco can contact IDX directly and get an insurance reimbursement policy worth up to $1,000,000. Protection services also include a system that monitors clients’ cards.
