Long time condiment maker Smucker’s was forced to shut down its online store after hackers breached the site and obtained customer and payment card information.
“We deeply regret that an incident resulting in the illegal and unauthorized access to data files within our Online Store occurred,” Richard Smucker, Chief Executive Officer at Smucker’s wrote in a message to customers.
“Unfortunately, we believe the unauthorized user may have obtained access to the personal information of some of our consumers, including name, address, email address, phone, credit or debit card number, expiration date, and verification code,” Smucker wrote. “The unauthorized user utilized a sophisticated scheme to illegally obtain this personal information as it was being entered during the online checkout process.
The company did not say how many individuals or payment card numbers were compromised.
According to Brian Krebs, Smucker’s was one of several dozen firms hacked last year by the same criminal gang that breached some of the biggest data brokers.
Smucker said the company will continue to investigate the breach with federal authorities, and has taken steps to rectify the cause of the incident with its online store.
Brian Krebs has more interesting details on the incident in this blog post.
*Updated
For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.
More from Mike Lennon
- ‘No Evidence’ of Cyberattack Related to FAA Outage, White House Says
- SecurityWeek to Host 2022 ICS Cybersecurity Conference October 24-27 in Atlanta
- Google Completes $5.4 Billion Acquisition of Mandiant
- Cybersecurity Firm ZeroFox Begins Trading on Nasdaq via SPAC Deal
- HUMAN Security and PerimeterX Merge on Mission to Combat Bots
- Last Call: CFP for ICS Cybersecurity Conference Closes July 15th
- Johnson Controls Acquires Tempered Networks to Shield Buildings From Cyberattacks
- Snowflake Launches Cybersecurity Workload to Find Threats Across Massive Data Sets
Latest News
- Fraudulent “CryptoRom” Apps Slip Through Apple and Google App Store Review Process
- US Downs Chinese Balloon Off Carolina Coast
- Microsoft: Iran Unit Behind Charlie Hebdo Hack-and-Leak Op
- Feds Say Cyberattack Caused Suicide Helpline’s Outage
- Big China Spy Balloon Moving East Over US, Pentagon Says
- Former Ubiquiti Employee Who Posed as Hacker Pleads Guilty
- Cyber Insights 2023: Venture Capital
- Atlassian Warns of Critical Jira Service Management Vulnerability
