By Jonathan Stempel
NEWYORK – The grocery store chain Wegmans agreed to pay $400,000 and improve its safety practices over a knowledge breach that uncovered private info of greater than 3 million shoppers nationwide, New York Lawyer Normal Letitia James mentioned on Thursday.
Wegmans was accused of storing buyer info in cloud storage containers hosted on Microsoft Azure that have been left open as a result of that they had been misconfigured, leaving the info weak to hackers.
James mentioned clients’ e-mail addresses and Wegmans account passwords have been uncovered for about 39 months, whereas clients’ names, mailing addresses and knowledge tied to their driver’s license numbers have been uncovered for about 30 months.
The breach occurred from 2018 till the spring of 2021. Wegmans started alerting clients whose info was compromised in June 2021. Greater than 830,000 New Yorkers have been affected.
“Within the twenty first century, there’s no excuse for firms to have poor cybersecurity techniques and practices that harm shoppers,” James mentioned in a press release.
Wegmans mentioned it takes the safety of shoppers’ knowledge very severely, and there was no indication anybody misused that knowledge.
“Whereas we don't agree with a few of the conclusions drawn by the legal professional normal, we cooperated absolutely within the investigation and are glad it has been concluded,” Wegmans mentioned in a press release.
Wegmans relies in Rochester, New York. It mentioned it has 108 shops in New York, Massachusetts, New Jersey, Pennsylvania, Maryland, Washington, D.C., Virginia and North Carolina.
Post a Comment