Home Depot has confirmed that a data breach occurred on their payment data systems in their stores in the US and Canada dating back to April 2014.
While the full scope, scale and impact of the breach are being determined, there is no evidence that debit PIN numbers were compromised. We have started receiving notice of possible cards that may be compromised and are attempting to get in touch with each member that will have to receive a new card.
UARK recommends that our members closely monitor their accounts for suspicious transactions. According to Krebs on Security, a massive amount of credit and debit card numbers went on sale on the black market on September 2. It is estimated that up to 60 million debit and credit card accounts were compromised. In addition, reports have mentioned that this is similar to the malware that caused the Target breach, affecting 40 million card numbers, in late 2013.
We will be working with our card processor and VISA in communicating additional information as it becomes available.
Home Depot is offering free services including credit monitoring, identity monitoring, and an identity theft insurance policy for anyone who shopped at a store since April 2014. Currently, they believe online shopping was not impacted. For more information about these services, please visit https://homedepot.allclearid.com/.