Kroger is latest victim of third-party software data breach – Washington, District of Columbia

Washington, District of Columbia 2021-02-20 16:34:59 –

Boston (AP) — Kroger Co. states that it is one of the multiple victims of data breaches involving third-party vendors …

Boston (AP) —

Kroger Co. is one of several victims of data breaches related to third-party vendor file transfer services, notifying potentially affected customers and offering free credit monitoring. Stated.

A Cincinnati-based grocery and pharmacy chain said in a statement on Friday that less than 1% of affected customers, especially some, believe they are using health and money services. Apparently I saw it.

According to Kroger, the breach did not affect the Kroger store’s IT systems or grocery store systems or data, and there were no signs of fraud related to the personal data accessed.

With 2,750 grocery stores and 2,200 pharmacies nationwide, the company didn’t immediately answer questions such as the number of potentially affected customers.

Mr. Kroger was one of the victims of a December hack of a file transfer product called FTA developed by California-based company Accellion, which was reported on January 23 when he stopped using Accellion’s services. He said he was notified. Companies use file transfer products to share large amounts of data and large amounts of email attachments.

Accellion has over 3,000 customers worldwide. The affected product is 20 years old and is said to be nearing its end of life. The company said on February 1 that it had patched all known FTA vulnerabilities.

Other Accelion customers affected by this hack include the University of Colorado, the Washington state auditor, the Australian financial regulator, the Reserve Bank of New Zealand, and the well-known US law firm Jones Day.

Hacking was especially serious for Washington state auditors. A file of 1.6 million claims from last year’s large-scale unemployment fraud investigation has been released.

In the case of Jones Day, a cybercriminal trying to blackmail a law firm dumped an estimated 85 gigabytes of data online that he claimed to have stolen.

Former President Donald Trump is one of Jones Day’s clients, but the criminal told The Associated Press in an email that no data was relevant to him.

Copyright © 2021 AP communication. all rights reserved. This material may not be published, broadcast, written, or redistributed.

Kroger is latest victim of third-party software data breach Source link Kroger is latest victim of third-party software data breach

Back to top button