Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Privacy Security

Rite Aid Says Breach Exposes Sensitive Details of 2.2 Million Customers (arstechnica.com) 9

Rite Aid, the third-largest U.S. drug store chain, reported it a ransomware attack that compromised the personal data of 2.2 million customers. The data exposed includes names, addresses, dates of birth, and driver's license numbers or other forms of government-issued ID from transactions between June 2017 and July 2018.

"On June 6, 2024, an unknown third party impersonated a company employee to compromise their business credentials and gain access to certain business systems," the company said in a filing. "We detected the incident within 12 hours and immediately launched an internal investigation to terminate the unauthorized access, remediate affected systems and ascertain if any customer data was impacted." Ars Technica's Dan Goodin reports: RansomHub, the name of a relatively new ransomware group, has taken credit for the attack, which it said yielded more than 10GB of customer data. RansomHub emerged earlier this year as a rebranded version of a group known as Knight. According to security firm Check Point, RansomHub became the most prevalent ransomware group following an international operation by law enforcement in May that took down much of the infrastructure used by rival ransomware group Lockbit.

On its dark web site, RansomHub said it was in advanced stages of negotiation with Rite Aid officials when the company suddenly cut off communications. A Rite Aid official didn't respond to questions sent by email. Rite Aid has also declined to say if the employee account compromised in the breach was protected by multifactor authentication.

This discussion has been archived. No new comments can be posted.

Rite Aid Says Breach Exposes Sensitive Details of 2.2 Million Customers

Comments Filter:
  • Fair Enough (Score:5, Insightful)

    by The Cat ( 19816 ) on Tuesday July 16, 2024 @07:57PM (#64631325)

    Just a couple of preliminary questions:

    How many IT layoffs have you had in the last year?

    How many qualified engineers over the age of 40 have you passed up hiring in the same interval?

    How many IT employees have you promoted in the last year? How many raises have you offered those same employees without being asked?

    How are all those layoffs working out for you?

    • Wow...

      No points or I'd mod you up. You not only summed up the breach, the tech labor market, and corporate America in general.

      Well done.

    • +1 Figures that I'm out of mod points.

    • by Njovich ( 553857 )

      And then not pay the severance they are contractually obligated to:

      https://www.abc27.com/local-ne... [abc27.com]

Swap read error. You lose your mind.

Working...