Who: Pharmaca

# of Records: 150,000 payment cards When it occurred: July 19, 2018, and December 12, 2018

What Happened: Malware may have captured customer payment card info in 13 locations in 5 states.

How it Happened: After receiving reports of fraud related to a small number of customers from payment card issuers, Pharmaca began investigating and found suspicious code appeared on its point-of-sale systems.  Pharmaca immediately began working with leading security experts to help determine what happened. Through this investigation, Pharmaca confirmed, on or about December 19, 2018, that malicious code may have captured customer credit and debit card information used for purchases at certain Pharmaca stores between July 19, 2018, and December 12, 2018. The incident only impacted purchases in their brick-and-mortar stores and the breach did not compromise any protected health information but did contain data types including​ card number, expiration date, and occasionally the cardholder’s name.

Outcome: The Pharmaca breach was brought to light by identification of compromised payment card data being sold by one dark web vendor. The compromised data was posted for sale between October and December of 2018. Pharmaca immediately responded and has since secured its systems. US federal law enforcement is investigating. This incident does not include medical records, prescription information, Social Security numbers, driver’s license numbers, passport numbers, government identification numbers, or other sensitive information about Pharmaca’s customers.