According to a report by KrebsOnSecurity, GameStop received a data breach that might effect those who purchase something on GameStop’s website between mid-September 2016 and the first week of February 17.
GameStop confirmed to CNET they had received notifications that some credit card data did pop up for sale and has been working to address the issue. GameStop posted the following statement on their website..
“At GameStop, the security of our customers’ payment card data remains a top priority. GameStop recently received notification from a third party that it believed payment card data from cards used on the GameStop.com website was being offered for sale on a website. That day a leading security firm was engaged to investigate these claims. GameStop has and will continue to work non-stop to address this report and take appropriate measures to eradicate any issue that may be identified.
We regret any concern this situation may cause for our customers. GameStop would like to remind its customers that it is always advisable to monitor payment card account statements for unauthorized charges. If you identify such a charge, report it immediately to the bank that issued the card because payment card network rules generally state that cardholders are not responsible for unauthorized charges that are timely reported.”