Yesterday, very quietly ACME issued a press release regarding yet another security breach involving credit & debit card data being exposed. It is clear now that these type of security concerns are cross-organizational. It also appears that companies of all sizes are struggling to deal to demands of data security and information technology in general.
Here is an excerpt from ACME’s press release yesterday.
We were recently notified by our IT services provider, SUPERVALU, of a separate, more recent attempted criminal intrusion that sought to obtain payment card information in some of our stores. This separate intrusion apparently occurred in late August or early September. We have been informed that different malware was used in this recently discovered incident than was used in the incident previously announced on August 14, 2014. The new malware may have captured account numbers, expiration dates, other numerical information and/or cardholder names.
Importantly, sensitive information (like Social security numbers, birthdates or driver’s license information), was not affected in either incident, because that information is not collected as part of the payment process.
We promptly notified federal law enforcement authorities of this separate criminal intrusion and we are cooperating in the efforts to investigate this matter and identify those responsible. Third-party data forensics experts are supporting an ongoing investigation into these incidents. There has been no determination at this point that consumer data has been stolen as a result of either event.
ACME stores in Delaware, Maryland, New Jersey and Pennsylvania have been impacted by this latest security breach.
The best way today to protect yourself is password security and that means using strong and unique passwords for all of your online accounts.
You can read more from ACME here.