Another retailer is confirming that it was a victim of hackers. America’s Thrift Stores, based in Birmingham, believes its stores were a victim of malware attacks between Sept. 1 and Sept. 27 of this year. It is believed that only credit card numbers and expiration dates were stolen from the charity store chain, not customer names, address, and email addresses. In a statement, the store CEO thinks the hack came from overseas.

“This breach allowed criminals from Eastern Europe unauthorized access to some payment card numbers. This virus/malware, is one of several infecting retailers across North America,” the company’s CEO said in a statement.

The store and the U.S. Secret Service think the stores are a victim of a malware-driven security breach that targeted software used by a third-party service provider. Krebs on Security found that “several banking sources say they have seen a pattern of fraud on cards all used at America’s Thrift Stores locations indicating that thieves have been able to use the data stolen from the compromised point-of-sale devices to counterfeit new cards.”

Read more on Krebs on Security website.