As previsouly announced on March 5, 2014, Sally’s systems detected an unauthorized intrusion into its network.
According to the compay, over the last several weeks, it has been comprehensively investigating the security incident. Based on the investigation, the firm said it discovered evidence that fewer than 25,000 records containing card-present (track 2) payment card data may have been illegally accessed on our system. But, the firm said as a result of the continuing investigation, we now understand that a larger number of additional records containing payment card data may have been illegally accessed and removed from our systems.
The company’s statement included the following: “As we have said previously, we will not speculate on the scope of our recent data security incident until the forensic review progresses because experience with such incidents at other retailers has taught that it is difficult to ascertain the extent of a data breach incident until the required forensic review is complete.”
“Our customers remain our top priority,” said Gary Winterhalter, chairman, president and CEO of the beauty supplies retailer.
Sally Beauty Holdings, Inc. has revenues of $3.6 billion annually and 4,700 stores, including approximately 200 franchised units, throughout the US, the UK, Belgium, Chile, France, the Netherlands, Canada, Puerto Rico, Mexico, Ireland, Spain and Germany.