Rite Aid Photo security breach

Rite Aid Photo security breach {and many others}

This past weekend, I needed to get some quick photos printed. So I figured I’d do it online via Rite Aid. Well, they suspended their online services:

Rite Aid Data Breach photos compromised

“We recently were advised by PNI Digital Media, the third party that manages and hosts mywayphotos.riteaid.com, that it is investigating a possible compromise of certain online and mobile photo account customer data. The data that may have been affected is name, address, phone number, email address, photo account password and credit card information. Unlike for other PNI customers, PNI does not process credit card information on Rite Aid’s behalf and PNI has limited access to this information. At this time, we have no reports from our customers of their credit card or other information being affected by this issue. While we investigate this issue, as a precaution we have temporarily shut down access to online and mobile photo services.

No other online or mobile transactions are affected. This issue is limited to online and mobile photo transactions involving PNI. RiteAid.com, Rite Aid Online Store, My Pharmacy, wellness+ with Plenti, in-store systems, in-store photo kiosk printing and photo gift ordering are not affected.

We take the privacy of customer information very seriously. We apologize for any inconvenience this may cause.”

Well, it apparently affected every other pharmacy in town, including Walgreens and CVS Pharmacy too. You can read the story from July on the Krebs on Security website.

Even though Rite Aid said their credit card info wasn’t breached, but rather just personal photos, your names and addresses. Gee, couldn’t a hacker make fake ID’s with enough of that data?

I ended up with a different solution – but it’s nice to know local Mimosa Digital wasn’t compromised (they use a different photo host – LifePics.com)

Leave a Reply

Be the First to Comment!