KURU Footwear

"What Happened? On February 2, 2017, we began investigating some unusual activity reported by our credit cardprocessor. We immediately began to work with third-party forensic experts to investigate these reports and toidentify any signs of compromise on our systems. On February 23, 2017, we discovered that we were the victim ofa sophisticated cyber-attack that resulted in the potential compromise of some customers’ debit and credit card dataused at www.kurufootwear.com between December 20, 2016 and March 3, 2017.Since that time, we have been working with third-party forensic investigators to determine what happened, whatinformation was affected and to implement additional procedures to further protect the security of customer debitand credit cards. We removed the malware at issue to prevent any further unauthorized access to customer debit orcredit card information. We are also working with the Federal Bureau of Investigations to investigate this incident.Through this process, we can now confirm you can safely use your payment card at our website. What Information Was Involved?Through the ongoing third-party forensic investigations, we confirmed onFebruary 23, 2017 that malware may have stolen credit or debit card data from some credit and debit cards used atwww.kurufootwear.com between December 20, 2016 and March 3, 2017. The information at risk as a result of thisevent includes the cardholder’s name, address, card number, expiration date and CVV."