Dive Brief:
-
Sources at financial institutions last week told investigative cybersecurity blogger Brian Krebs about a possible data breach at retail outlets of Goodwill Industries International.
-
Goodwill acknowledged the possible breach in a letter to Krebs and said it is working with the U.S. Secret Service to investigate.
-
Rockville, MD-based Goodwill Industries sells donated items to fund job training and placement for disabled workers, among other community services.
Dive Insight:
Goodwill may be known for its community services and the unlikely finds among its quirky collection of donated goods, but with some 2,900 stores, it is also a major retailer.
If the suspected breach is confirmed, and if it turns out to be due to malware similar to that which caused data breaches late last year, that would be a sign that retailers and credit-card companies have yet to get a handle on payment security in a meaningful way.
