Forever 21 Discloses Card Data Theft

Forever 21 Inc. disclosed last week that almost 99,000 payment cards used by customers at its retail stores may have been compromised in a series of data thefts dating back to August 2004.

In a statement on its Web site, the Los Angeles-based discount retailer said it learned of the possible data theft on Aug. 5, when it was notified by the Boston office of the U.S. Department of Justice.

The company did not say why it waited more than a month after discovering the compromise to notify affected customers. The DOJ had disclosed the Forever 21 breach in indictments filed against three people for hacking into the computer systems of multiple retailers.

Forever 21 said the compromised data included credit and debit card numbers, expiration dates "and other card data." It did not return a call seeking comment.

This version of the story originally appeared in Computerworld's print edition.

Copyright © 2008 IDG Communications, Inc.

7 inconvenient truths about the hybrid work trend
Shop Tech Products at Amazon