The latest consumer credit card information security problem involves the online photo services of several major retailers. Walmart Canada informed its customers last week of a possible data breach in the credit card records of its online photo service, and this week CVS Health Corp. and Costco both suspended their services for the same reason. PNI Digital Media, which was hacked last year, is an outside vendor owned by Staples which operates the service for all three of the companies affected.

The companies have not revealed how many customers’ accounts might have been compromised, but similar breaches at Target and Home Depot over the past couple of years potentially affected millions of their customers’ accounts. Although CVS customers have been warned to check their credit card statements for suspicious activity, the company says its customers shopping at the company’s pharmacies either online or in stores are not at risk. In a separate statement, Walmart also said that its in-store and online non-photo shoppers’ financial transactions were safe.

In what appears to be an unrelated incident, University of California (UCLA) Health has reported that data on as possibly 4.5 million individuals has been potentially compromised. UCLA Health, which manages four hospitals in the university system, says the Federal Bureau of Investigation and private forensics examiners are investigating whether any patients’ personal or medical data were actually leaked.