US DIY and home improvement merchant Home Depot has become the latest US retailer to be hit by a credit and debit card data breach, according to security blogger Brian Krebs. In the wake of data breaches affecting other major US retailers, Krebs suggests that Home Depot may have fallen victim to the same group of Russian and Ukrainian hackers responsible for the data losses at Target and others.
Krebs states that banks have seen their customer’s data available for sale on the same underground cyber-crime store used to distribute other stolen retailer data. The breach at Home Depot could extend back to April and May of this year and affect its entire 2,200 store footprint in the US.
According to Krebs: “If that is accurate – and if even a majority of Home Depot stores were compromised – this breach could be many times larger than Target, which had 40 million credit and debit cards stolen over a three-week period.”
Home Depot has confirmed that it is now working with banks and law enforcement to look into “some unusual activity” relating to customers. The company promised to alert customers as soon as it can ascertain a data breach has occurred.