Newsroom

Sept. 4, 2014 – Goodwill Industries International yesterday confirmed a suspected data breach in its card processor's systems affecting approximately 330 stores in 20 states.

The number of affected consumers is not yet known. According to Goodwill, the malware attack affecting its third-party vendor's systems occurred between Feb. 10, 2013, and Aug. 14 of this year. Goodwill's statement noted that the system attack affected consumers' personal information, including names, payment card numbers and expiration dates.

NAFCU reported on the potential breach in July when Goodwill was alerted to the situation. The confirmation of this data breach follows recent breaches at Home Depot, Dairy Queen, UPS and grocery chain Supervalu.

NAFCU was the first financial trade association to call for a national data security standard for retailers in the wake of the massive Target data breach late last year. The association continues to call for legislative action on Capitol Hill to hold retailers accountable for data breaches.