Wegmans Notifies Customers Of Database Security Breach
Wegmans Notifies Customers Of Database Security Breach
Thursday, June 17th 2021, 10:00 AM EDT
By Amy Hogan
Image
Wegmans is notifying its customers of a security breach of a database that stores customer information. A statement posted to the grocery chain's website explains that the cloud database was meant for internal use only, but, due to a "configuration problem," was left open to potential outside access.
Wegmans says they were notified of the issue by a third-party security researcher in mid-April. The company says the database contains customer phone numbers, addresses, email addresses, Shopper's Club Card numbers, and passwords to Wegmans.com. However, Wegmans says all passwords were encrypted, so the actual characters for the passwords were not involved.
The retailer says they do not collect social security numbers and don't store banking or payment information, so those were not compromised.
Wegmans says they have fixed the issue and taken steps to protect the database in the future. They say, while passwords were protected, concerned customers can change them as a conservative measure.
Thursday, June 17th 2021, 10:00 AM EDT
By Amy Hogan
Image
Wegmans is notifying its customers of a security breach of a database that stores customer information. A statement posted to the grocery chain's website explains that the cloud database was meant for internal use only, but, due to a "configuration problem," was left open to potential outside access.
Wegmans says they were notified of the issue by a third-party security researcher in mid-April. The company says the database contains customer phone numbers, addresses, email addresses, Shopper's Club Card numbers, and passwords to Wegmans.com. However, Wegmans says all passwords were encrypted, so the actual characters for the passwords were not involved.
The retailer says they do not collect social security numbers and don't store banking or payment information, so those were not compromised.
Wegmans says they have fixed the issue and taken steps to protect the database in the future. They say, while passwords were protected, concerned customers can change them as a conservative measure.
