Although Sally Beauty acknowledges that 25,000 payment cards may have been compromised in a recently disclosed breach, Brian Krebs challenges their statement by analyzing the zip codes of card data up for sale on an underground market, rescator.so. You can read his analysis here, but the short version is that Brian speculates that all Sally Beauty stores nationwide were affected (approximately 2,600) and that 282,000 card numbers up for sale on rescator.so as “Desert Strike” are their customers’ data. Sally Beauty continues to decline comment until they complete their investigation.