CVS warns that its photo website may have been hacked

CVS's online photo service CVSPhoto.com is no longer online, and instead alert customers that customer credit card information has been compromised.

Security journalist Brian Krebs first wrote about this discovery earlier this morning.

CVS isn't the first company having such a problem with third party online transaction breaches. Last week Walmart Canada's photo website warned users that its customer credit card data may have also been compromised.

Walmart Canada used a third party vendor called PNI Digital to operate its photo website. PNI describes its services as a "proprietary transactional software platform." According to Krebs, PNI offers its services to retailers including Costco, Walmart Canada, and CVS/Pharmacy.

Business Insider reached out to CVS. A spokesperson gave us this statement:

We have been made aware that customer credit card information collected by the vendor who manages and hosts CVSPhoto.com may have been compromised. As a precaution, as our investigation is underway we are temporarily shutting down access to online and related mobile photo services. We apologize for the inconvenience.

Customer registrations related to online photo processing and CVSPhoto.com are completely separate from CVS.com and our pharmacies. Financial transactions on CVS.com and in-store are not affected.

Nothing is more central to us than protecting the privacy and security of our customer information, including financial information. We are working closely with the vendor and our financial partners and will share updates as we know more.

For more information, call 1-800-SHOP-CVS.