Long time condiment maker Smucker’s was forced to shut down its online store after hackers breached the site and obtained customer and payment card information.
“We deeply regret that an incident resulting in the illegal and unauthorized access to data files within our Online Store occurred,” Richard Smucker, Chief Executive Officer at Smucker’s wrote in a message to customers.
“Unfortunately, we believe the unauthorized user may have obtained access to the personal information of some of our consumers, including name, address, email address, phone, credit or debit card number, expiration date, and verification code,” Smucker wrote. “The unauthorized user utilized a sophisticated scheme to illegally obtain this personal information as it was being entered during the online checkout process.
The company did not say how many individuals or payment card numbers were compromised.
According toBrian Krebs, Smucker’s was one of several dozen firms hacked last year by the same criminal gang that breached some of the biggest data brokers.
Smucker said the company will continue to investigate the breach with federal authorities, and has taken steps to rectify the cause of the incident with its online store.
Brian Krebs has more interesting details on the incident in this blog post.
Managing Editor, SecurityWeek.Previous Columns by Mike Lennon:Microsoft Shares Untold Story Behind Security Development Lifecycle Target CIO Resigns After Data BreachSmuckers Shutters Online Store After BreachFireEye Publishes 2013 Advanced Threat ReportRecent IE Zero-Day Used in Widespread Attacks: Symantec
Tags: NEWS INDUSTRY