Why don’t we add another event of exposed customer data to the long list of companies? We will add Sears and Delta to the list of companies because today, both Sears Holding Corp and Delta Air Lines admitted that some of their customer payment information may have been exposed. This apparently happened because the software service provider that was hosting the data for both companies suffered a breach themselves.
Tech form 7.ai, which handles the customer data for these corporations and Kmart, has publicly confirmed the breach yesterday. In terms of the incident, it happened on or following September 27th, 2017 and was apparently resolved by October 12th. Sears, however, was informed of the breach mid-March. The company learned that credit card information for under 100,000 customers was exposed in the breach.
For Delta, in a statement, it assured customer that while a ‘small subset’ of its customers’ data may have been exposed to hackers, their password, security data and government ID information was not compromised.