Michaels, the biggest U.S. arts and crafts retailer, said on Saturday it is working with federal law enforcement officials to investigate a possible data breach on its systems that process payment cards.
"We are concerned there may have been a data security attack on Michaels that may have affected our customers' payment card information and we are taking aggressive action to determine the nature and scope of the issue," Chief Executive Chuck Rubin said in a statement emailed to Reuters.
The company said it has also hired an outside forensics firm to investigate the matter.
If the company's suspicions are confirmed, Irving, Texas-based Michaels would become the third major U.S. retailer to be identified as a victim of a cyber attack since the middle of last month. Target Corp reported an unprecedented breach over the holiday shopping season and luxury chain Neiman Marcus disclosed that it suffered a smaller attack.
The FBI last week cautioned retailers to prepare for more attacks, saying it expects that hackers will succeed in using similar techniques to break into networks at other chains.
- PHOTOS: What's Brewing in Steamy Hallows, the Harry Potter-Inspired Cafe19 Pictures
- PHOTOS: Frida Kahlo at the Brooklyn Museum doesn't hold back23 Pictures
Michaels said in its statement that it had "recently learned of possible fraudulent activity on some U.S. payment cards that had been used at Michaels, suggesting that the Company may have experienced a data security attack."
That statement quoted Rubin as saying that while the company had not confirmed that its systems had indeed been compromised, "We believe it is in the best interest of our customers to alert them to this potential issue so they can take steps to protect themselves."
Target has said that some 40 million payment card numbers and another 70 million customer records were compromised, while Neiman Marcus has said about 1.1 million payment card numbers were taken.