July 22, 2014

Goodwill investigates possible data breach

July 23, 2014 – Goodwill Industries International announced Monday it is investigating a potential data security breach involving consumers' credit card information after being alerted to the situation by federal authorities Friday.

Goodwill said, in a statement: "Goodwill Industries International was contacted last Friday afternoon by a payment card industry fraud investigative unit and federal authorities informing us that select U.S. store locations may have been the victims of possible theft of payment card numbers. Investigators are currently reviewing available information. At this point, no breach has been confirmed but an investigation is underway."

According to KrebsOnSecurity, sources have said "multiple locations of Goodwill Industries stores have been identified as a likely point of compromise for an unknown number of credit and debit cards."

Data security is one of the many issues being highlighted in educational sessions at NAFCU's Annual Conference and Solutions Expo this week in Las Vegas. Jacob Olcott, principal at Good Harbor Security Risk Management, LLC, will present on "Building a ‘Cyber Secure' Credit Union" tomorrow afternoon.

NAFCU was the first financial trade association to call for national data security standards for retailers in the wake of the massive Target Corporation data breach last year, and continues to press Congress for action.