Costco, Rite Aid and Tesco photo services also affected by PNI Digital Media security breach

Last week we reported on the news that CVS’ online photo services at CVSPhotos.com had been hacked, potentially revealing the payment information of its customers. This news came only a week after Wal-Mart Canada announced its services — which were run by the same Vancouver-based company as CVS’ photo services, PNI Digital Media — were also hacked and temporarily shut down.

As we feared in our initial article, it appears Wal-Mart and CVS were only the beginning. Club store Costco, pharmacy chain RiteAid and British-based grocery store Tesco have all shut down their online-based photo services, each of them echoing a similar statement noting that PNI Digital Media had been breached and is currently undergoing an investigation into the matter.

Although it has not been confirmed, the three new retailers affected by the breach likely affect only online customers, not customers who use the respective retailers in-store kiosks and printing services.

That said, PNI Digital Media operates roughly 8,000 kiosks and handles over 18 million transactions a year. So, if it is confirmed kiosks are also affected, that is a lot of payment information in the hands of the wrong people.

If you’ve used any of the above online photo services, keep an eye on your credit card statements for any suspicious activity. We’ll be sure to update you as the investigations carry on and more information comes to light.