OfficeMax is denying reports that cardholder account numbers used to produce counterfeit credit and debit cards were obtained through computer hacking of its database.
OfficeMax issued the denial in response to comments from Hudson County (N.J.) Prosecutor Edward DeFazio that a large number of account numbers used on counterfeit cards had previously been used for purchases at OfficeMax locations. “We aren’t sure how the breach occurred but there seems to be a commonality that comes back to OfficeMax,” he says.
Account numbers used on the counterfeit cards also were traced to other sources, DeFazio says.
In a statement, OfficeMax said that an internal review and an extensive forensic analysis by an independent third party expert found no evidence of a security breach. “OfficeMax takes the security of our customers; information with the utmost seriousness and is committed to protecting private customer information. We have strong, secure data security systems and procedures in place and constantly evaluate them to ensure we maintain a secure environment,” OfficeMax said.
OfficeMax also said it is working with the U.S. Secret Service and other federal law enforcement agencies in the investigation of ATM fraud involving legitimate debit card use at various retailers that was later tied to fraudulent transactions outside the U.S.
Federal officials also told OfficeMax that in several recent cases where retailers were initially blamed for a breach, another source later was found, according to the statement.