Jewel’s parent company, AB Acquisition, said the unauthorized access of customer data might have started as early as June 22, and ended as late as July 17.
“Third-party data forensics experts are supporting an ongoing investigation. AB Acquisition has not determined that any cardholder data was in fact stolen, and currently it has no evidence of any misuse of any such data,” the company said in a statement on its website. “AB Acquisition believes that the intrusion has been contained and is confident that its customers can safely use their credit and debit cards in its stores.”
The company said the data breach appeared to impact Jewel-Osco stores in Illinois, Indiana, and Iowa; Albertsons stores in California, Idaho, Montana, North Dakota, Nevada, Oregon, Utah, Washington, and Wyoming; and Shaw’s and Star Markets stores in Maine, Massachusetts, New Hampshire, Rhode Island, and Vermont.
Source and Full Story: https://www.us-cert.gov/ncas/alerts/TA14-212A