Mid-Western supermarket chain Hy-Vee issued an update regarding the POS data breach it reported in August, including when it happened on the locations involved.
Hy-Vee said in an October 3 release that unauthorized access was detected on July 29, 2019 and focused on Hy-Vee fuel pumps, drive-thru coffee shops, and restaurants at Hy-Vee Market Grilles, Hy-Vee Market Grille Expresses, the Hy-Vee owned and operated Wahlburgers locations, as well as the cafeteria at Hy-Vee’s West Des Moines corporate office. The dates these operations were impacted varied with general timeline beginning December 14, 2018, to July 29, 2019 for fuel pumps and from January 15, 2019, to July 29, 2019, for restaurants and drive-thru coffee shops. There are also six unspecified locations where the malware may have been in place as early as November 9, 2018 and one location where the issue continued through August 2, 2019.
The company originally did not say what PII was involved, but now stated the malware tracked payment card details including the cardholder’s name, card number, expiration date and internal verification code. Not every POS system at the affected locations contained the malware nor did the malware scrape every payment card as it was run through the system. So in some instances a payment card could have been used at an infected location yet not be compromised, the company said. The exact number of people affected was not released.
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.