Check your credit cards: Possible CVSPhoto.com data breach leads to temporary shutdown

CVS, the second-largest drugstore chain, has shut down its online photo service today after it confirmed it’s looking into the possibility of a ‘hack’ that could’ve lead to stolen credit card information.

According to NBC, the payment information held on its CVS Photo service accounts is collected by PNI Digital Media, a Staples-owned company that handles online and kiosk-based software and transactions for a number of photo services, including Kodak, Shutterfly, Snapfish, Flickr, PhotoBucket and Picasa.

 

The notice CVS has displayed on the website of its online photo creation and print service

CVS said it has turned off its editing, creation and printing services on CVSPhoto.com and related mobile apps as a precautionary measure to minimize any further data breaches. This implies CVS’s photo service was the only company affected, but details are still scarce and will be until both CVS and PNI Digital Media finish their ongoing investigations into the breach.

As pointed out by NBC, this possible breach comes roughly a week after Wal-Mart’s online photo website in Canada, which is also tied in with PNI Digital Media, was potentially breached as well.

CVS notes that any in-store transactions, including those done through its kiosks, are safe from the potential breach. If you do conduct business through CVS Photos online service, keep an eye on your credit card statements and report any suspicious activity.

We’ll be sure to update you on the matter as more details become available.