July 12, 2012 at 1:40 PM ET
If you've got an online account with Best Buy, it might be best to change your password ASAP: hacking attempts of accounts on BestBuy.com are on the rise, and the retailer has alerted affected customers about the problem, via an email.
On Best Buy's customer discussion board, a thread called "Account hacked" shares the tales of some who have been victims of the hack:
My account was just hacked on the 9th. Ordered 6 XBOX/PSN cards totalling $300. Couldn't verify the orders I guess w the ID code on the credit card is my guess.
Another customer posted July 11:
This happened to me tonight. Luckily I canceled the order right away. I changed my BB password and I think I'm probably going to remove my card from the online ordering so no one can place an order with automatic payment. I thought it was odd an online account that I haven't used or accessed since december of last year was compromised. Now I'm starting to see a pattern. I'm just glad I didn't have to pay for the $200 worth of psn/itunes cards they ordered.
Best Buy started notifying customers by email last week about the problem. Its email (shown below) said, in part:
We are currently investigating increased attempts by hackers around the world to access accounts on BestBuy.com and other online retailers’ e-commerce sites. These hackers did not take username/password combinations from any Best Buy system; they appear to be using combinations taken elsewhere in an attempt to gain access to BestBuy.com accounts.
The company goes on to say that if you've received this email, "your account may have been accessed by these hackers. We are taking action now to help protect your account; we have disabled your current password, and ask that you take a few minutes to reset it. "
Best Buy spokeswoman Susan Busch said in an email to msnbc.com that, "along with a growing number of retailers around the world," the company is "seeing increased attempts by hackers to target customers online and compromise stored user information such as user names or passwords. These hackers did not take user name/password combinations from any Best Buy system. Instead, it appears as if they took information (user names/passwords) gleaned from other website systems and tried to gain access to Best Buy.com accounts using that information."
She also said:
We are working to take care of our customers who were affected by these attacks by crediting their accounts for any unauthorized purchases and asking them to take the time to protect their online information by changing their passwords. We also are proactively reaching out to customers who have not been affected by these hackers and reminding them of the importance of regularly changing their online information.
This story was updated at 4:05 p.m. Thursday.