The Pentagon confirmed on Friday a cyber breach that compromised personal and credit card information of military and civilian personnel. The breach targeted the Department of Defense’s travel records and may have impacted as many as 30,000 workers, according to AP. Sources close to the investigation indicated that no classified information was compromised and that the breach could have happened months ago, but DoD leaders learned about the attack on Oct. 4. “It’s important to understand that this was a breach of a single commercial vendor that provided service to a very small percentage of the total population” of Defense Department personnel, said Lt. Col. Joseph Buccino, a Pentagon spokesman. The vendor in question has not been publicly identified, but Buccino said the department “has taken steps to have the vendor cease performance under its contracts.” Additionally, “the department is continuing to assess the risk of harm and will ensure notifications are made to affected personnel,” said a Pentagon statement. The DoD has also promised that affected individuals will be offered fraud protection services.