Buckle Payment Card Data Breach Class Action Investigation

Chimicles Schwartz Kriner & Donaldson-Smith LLP (CSK&D) is investigating a potential class action lawsuit against The Buckle, Inc. (Buckle) following its announcement that Buckle discovered its store payment systems became infected with malware. Buckle acknowledged the malware may have affected certain payment cards used in stores, and explained the malware is designed to obtain payment card data, including bank account numbers, account holder names and expiration dates from payment cards used in stores. Buckle identified that the breach may affect transactions with Buckle that occurred between October 28, 2016 and April 14, 2017.

On June 16, 2017, Buckle issued a public announcement that provided further information about the incident. According to the announcement, following an investigation “Buckle identified malware on certain Buckle retail store location point-of-sale (POS) systems. This malware apparently was designed to record payment card data.” The announcement continued, “the malware searched for track data read from the magnetic stripe of a payment card (which, based on the forensic artifacts Buckle has been able to review, sometimes include cardholder name in addition to card number and expiration date).” The announcement noted it “is always advisable to remain vigilant to the possibility of fraud by reviewing your payment card statements for unauthorized activity.”

If you believe your personal financial information was compromised by the recent data breach at Buckle, please contact the lawyers listed on this page.