Barnes & Noble has been the victim of a cyber attack that saw hackers access systems containing email, shipping and billing addresses alongside phone numbers.
In an email to customers, the US book chain said it was made aware of the breach on 10th October, which resulted in “unauthorized and unlawful access to certain Barnes & Noble corporate systems”.
The company said this may have exposed some of the personal information it holds on customers, although financial data was secure.
It said: “There has been no compromise of payment card or other such financial data. These are encrypted and tokenized and not accessible. The systems impacted, however, did contain your email address and, if supplied by you, your billing and shipping address and telephone number. We currently have no evidence of the exposure of any of this data, but we cannot at this stage rule out the possibility.”
B&N went on: “We take the security of our IT systems extremely seriously and regret sincerely that this incident has occurred.”
The email added that, although emails were not compromised, email addresses may have been exposed and customers could receive unsolicited messages.
According to The Register, the chain's network went down on Sunday, with users of the firm's Nook e-readers unable to download titles and some cash registers inoperable.
Barnes & Noble declined to comment.