From the Credit Union National Association
A data breach at Aldi's grocery stores as a result of tampered debit card payment terminals at some stores has affected many financial institutions, including at least one credit union.
According to Aldi's October 1st press release
ALDI Inc. today announced that, from approximately June 1, 2010 to August 31, 2010, tampered payment card terminals were illegally placed in some ALDI stores, enabling unauthorized individuals to fraudulently obtain payment card information from a limited number of our customers. The tampered terminals were capable of capturing information such as name, card account number and PIN.
What's disturbing about this incident is how many stores had hacked terminals. According to Aldi's press release, stores in the following 11 states were affected: Connecticut, Illinois, Georgia, Indiana, Maryland, New Jersey, New York, North Carolina, Pennsylvania, South Carolina and Virginia.