Wichita, Kansas-based Sheplers, which has 21 stores in eight states, said in its announcement Friday that the breach potentially affects customers who used payment cards at its retail locations between June 11 and Sept. 4, 2014. It said the information at risk includes names, account numbers for both credit cards and debit cards, and card expiration dates.
The retailer said it has found no evidence that debit card PINs have been compromised, and it does not believe that social security numbers, which are not stored on payment cards, could have been accessed.
PINs? Do they store PINs? Why would they have customer ssn? I’m confused.