Plus size swimwear retailer SwimSuitsforAll recently began notifying customers that the computer system used to process payments for purchases made on its Web site was accessed on June 24, 2013. The breach was discovered three days later, on June 27, 2013.
According to the company, the hacker or hackers may have accessed customers’ names, addresses, credit or debit card numbers, and credit or debit card expiration dates.
While SwimSuitsforAll isn’t offering its customers any identity protection services following the incident, the company is advising customers to review their financial statements for unauthorized activity, and to request copies of their credit reports from each of the three nationwide credit reporting companies.
“We want to assure you that we are committed to the security of your personal information and are taking this matter seriously,” company vice president of operations Isaac Ashkenazie wrote in the notification letter [PDF]. “We have implemented additional technical safeguards and are conducting a comprehensive internal review of our practices and procedures in order to prevent an incident like this from occurring in the future.”
Customers with questions are advised to contact the company at (888) 241-SWIM.