From a News Release by WV Attorney General Patrick Morrisey
CHARLESTON, W.Va. — Attorney General Patrick Morrisey  urged consumers to monitor their personal accounts and credit reports after several major retail stores announced a potential data breach with their online photo printing services.
 
“Protecting consumers’ identities and information is of utmost importance to our Office,” Attorney General Morrisey said. “We want to be sure West Virginia consumers are alerted any time their personal information may be compromised. We make it a priority to constantly provide helpful tips and resources in case something like this occurs.”

 
CVS, Costco, Sam’s Club, Rite Aid and Walmart Canada have all temporarily taken down their online photo printing websites in the wake of a suspected data breach at PNI Digital Media, a third-party vendor that manages and/or hosts their photo services sites. The companies were made aware that customer credit card information collected through online photo purchases may have been compromised. As a precaution, they have temporarily shut down access to online and related mobile photo services.
 
“Corporate data breaches are becoming far too common, but these entities are no less susceptible to scammers than anyone else,” Attorney General Morrisey said. “Hackers are becoming more resourceful and smarter in ways to crack even the most secure of networks. That’s why we urge consumers to always be extremely cautious when providing personally identifiable information, especially online.”
 
It is important for consumers to know that from all reports the photo printing websites for these stores are independent from the companies’ main websites. The data breach of the online photo printing site does not reflect a company-wide breach, and financial transactions made on the companies’ main sites have not been affected.
 
“In today’s digital age, many consumers turn to the Internet for retail services that once required walking into a store,” Attorney General Morrisey said. “However, this convenience has proved to come with some drawbacks, like cyber theft.”
 
Attorney General Morrisey offers consumers the following tips on how they can avoid credit card cyber theft and what to do if they find themselves a victim of an online data breach: If you are a victim of credit card fraud, it is important to know that you have certain rights. If a credit card was used and the number, not the card, was stolen, you are not liable for any unauthorized purchases under the Fair Credit Billing Act. If a debit card was used and the card was not lost, you are not liable for any unauthorized transactions if you report them within 60 days of receiving your statement.
 
If you believe you have been a victim of credit or debit card fraud or identity theft, contact local law enforcement and the Attorney General Office’s Consumer Protection Division at 800-368-8808, as well as the Federal Trade Commission at 1-877-438-4338 or www.ftc.gov/idtheft.