Slashdot Mirror

← Back to Stories (view on slashdot.org)

Supervalu Becomes Another Hacking Victim

Posted by Soulskill on from the another-day-another-breach dept.

plover sends this news about another possible exposure of customer data: Supervalu is the latest retailer to experience a data breach, announcing today that cybercriminals had accessed payment card transactions at some of its stores. The Minneapolis-based company said it had "experienced a criminal intrusion" into the portion of its computer network that processes payment card transactions for some of its stores. There was no confirmation that any cardholder data was in fact stolen and no evidence the data was misused, according to the company. The event occurred between June 22 and July 17, 2014 at 180 Supervalu stores and stand-alone liquor stores. Affected banners include Cub Foods, Farm Fresh, Hornbacher's, Shop 'n Save and Shoppers Food & Pharmacy.

4 of 27 comments (clear)

  1. No Surpris by TechyImmigrant · · Score: 2

    They can't even spell their own name.

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.
  2. In other news by TechyImmigrant · · Score: 4, Funny

    SuperValu are the the only ones. Targe, WallMar and Whole Food were also hacked.

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.
  3. Re:Why do they have this data in the first place? by plover · · Score: 3, Informative

    There are typically two phases to processing credit. In the first phase, called authorization, the terminal sends the request to the bank via their processor and requests authorization: hey, bank, will you approve $100? The bank sends back a 'yes' which is returned to the terminal, but no money changes hands at this time. The processor saves up the day's batch of authorization requests.

    In the second phase, called settlement, the processor sends the batch to the bank, either later that night, or every few hours, or whenever. The bank then transfers the funds for every authorized transaction in the batch.

    This is different from debit, where the funds are transferred in a single step.

    --
    John
  4. For those thinking that these are insider jobs by WindBourne · · Score: 2
    BTW, for those that think that these were companies that were cracked by ppl walking into the stores, here you go
    www.chicagotribune.com/business/breaking/chi-report-jewel-osco-hacked-20140815-story.html

    The list of retailers that have been hit by breaches just this year includes Recreational Equipment Inc., CVS/Caremark, Goodwill Industries International Inc., Ebay, Aaron Brothers, Sally Beauty Supply, Home Depot, Sears, Michaels Stores and Neiman Marcus.

    And that does not include either Jewel Osco, Target, or Supervalu. In addition, all have been done in less than 9 months.
    So, is this ppl running around the nation going into all of these companies? Nope. Possibly a backdoor was found on the network equipment. But, I suspect that they have simply bought some ppl in the nations that they have outsourced to.

    --
    I prefer the "u" in honour as it seems to be missing these days.