AMU Cyber & AI Homeland Security Opinion Privacy

Data Breaches at Supervalu and Albertsons: Time for Warning Labels?

By Glynn Cosker
Editor, In Homeland Security

2014 is the year of the data breach with major nationwide stores like Target and The Home Depot hacked and their customers’ personal information compromised. Adding to the mix this week are the national grocery stores Supervalu and Albertsons. This is the second occurrence for Supervalu, on the heels of a separate data breach in mid-August.

In separate statements this week, both grocery outlets reported hacks into their computer systems in late August or early September. As in many previous hacking cases, malicious software was installed on debit and credit card hardware in each store, so personal information such as names, account numbers and expiration dates were taken.

Boise-based Albertsons has 1,081 stores nationwide and the data breach might affect consumers in Idaho, Nevada, California, Montana, Oregon, North Dakota, Utah, Wyoming and Washington. Additionally, shoppers at Acme Markets stores in Pennsylvania, Maryland and New Jersey are at risk of identity theft or other criminal activity.

Supervalu states that although the latest case of malware and hacking was ‘widespread,’ only four of its Minnesota-based Cub Foods stores had any specific consumer data captured.

“We’ve taken measures to install enhanced protective technology that we believe significantly limited the ability of this malware to capture payment card data and we will continue to make these investments going forward,” said Supervalu CEO Sam Duncan.

With data breaches occurring at an alarming rate, is it time for stores to post warnings to consumers stating that the company’s systems were previously hacked? Consumers are warned about risks on various products they buy, what makes a hacked store any different?

It’s not as outlandish as one might think. If these incidents occur even more frequently in the future, the public may call for laws that warn consumers about previous data breaches. Nutritional labels on food were deemed common sense and in the best interests of consumers, it’s possible that the cybersecurity community may soon adopt a similar view.

Comments are closed.