October 24, Dark Reading – (National)
Barnes & Noble Stores Targeted in Nationwide Payment card-Skimming Scam.
Rogue PIN pad devices discovered at more than 60 Barnes & Noble stores nationwide appeared to be the handiwork of a well-orchestrated financial fraud scheme that rigged just one device at each store, Dark Reading reported October 24.
The retail bookseller revealed that it had halted use of all PIN pad devices in most of its 700 stores as of September 14 in the U.S. and that the FBI is investigating the case. The compromised PIN pad devices represent less than 1 percent of the total number of these devices in Barnes & Noble stores, according to the retailer.
The compromised devices were found in some stores in California, Connecticut, Florida, New Jersey, New York, Illinois, Massachusetts, Pennsylvania, and Rhode Island.
Somehow, the criminals were able to gain physical access to the devices, which Barnes & Noble described as having been tampered with and implanted with “bugs” that let the fraudsters capture credit card and debit card PIN numbers. Barnes & Noble declined to provide details on the type or features in the rigged devices.