Skip to main content

Large Supermarket Chain Kroger Suffers Data Breach

By March 6, 2021May 11th, 2022Cybersecurity

Kroger, a titan in the US supermarket industry, is the latest company to fall victim to a data breach. In this case, the breach came about via a third-party service the company utilized called Accellion FTA.

Hackers were able to exploit a Zero-Day vulnerability in that software and use it to steal data from vendors using it. Kroger wound up in the crosshairs.

Kroger’s official statement in response to the breach reads in part as follows:

“At this time, based on the information provided by Accellion and our own investigation, Kroger believes the categories of affected data may include certain associates’ HR data, certain pharmacy records, and certain money services records.

Importantly, there was no impact to grocery store data or systems; credit or debit card information; or customer account passwords.”

While it is good news indeed that no payment card information was stolen, the Federal government takes a dim view of anyone who loses control over medical information of any type. So this may land both companies in hot water, depending on the final findings of the investigation into the matter.

In any case, if you are a Kroger shopper, and especially if you make use of Kroger’s pharmacy, be aware that some of your personal information may be compromised. That means that in the weeks and months ahead, you may be targeted by phishing emails in a bid to get enough information from you so that the hackers can steal your identity. Be on your guard against that.

It’s also worth noting that Kroger is a big company, employing more than half a million people in nearly 3000 locations, nationwide, and with sales in excess of $122 billion. That’s significant because it underscores that no company, regardless of how big, is safe from the hackers of the world. Stay vigilant, the year is still young.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.