The Latest Data Breaches for November 2014: USPS and Grocery Stores Operated by AB Acquisition LLC & SUPERVALU

USPS data breachUSPS Breach

The U.S. Postal Service said on 11/10/14 that employees’ personal data, including Social Security numbers, may have been compromised in a cyber attack.

The Postal Service said more than 800,000 — all those that receive their pay from the postal service and some retirees, could potentially be affected.

In a statement, the USPS said the FBI was leading an investigation and that customer credit card data did not appear to be at risk.

“The intrusion is limited in scope and all operations of the Postal Service are functioning normally,” the statement said. “Postal Service transactional revenue systems in post offices as well as on usps.com, where customers pay for services with credit and debit cards have not been affected by this incident.”

Over 2.9 million customers who contacted the postal service customer care center with an inquiry via telephone or email between January 1, 2014, and August 16, 2014 are also at risk.

The intrusion compromised names, addresses, telephone numbers, email addresses and other information for those customers who may have provided this information, according to the statement.

AB Acquisition LLC & SUPERVALU Breach

ABS-Logo

In addition, malware was discovered this fall 2014 on some point of sale systems within grocery stores operated by AB Acquisition LLC & SUPERVALU.  SUPERVALU’s stores include: Cub Foods, Hornbacher’s, Farm Fresh, Shop ‘N Save, and Shoppers Food & Pharmacy. AB Acquisition’s stores include Albertson’s stores under Albertson’s LLC and ACME Markets, Jewel-Osco, and Shaw’s and Star Markets under New Albertson’s, Inc.

Click here to review a statement and press release from SUPERVALU with more details about the incident, should you suspect you may be affected by this malware incident.  For more information on the AB Acquisition LLC incident, click hereSuperValuLogo

It is important to know the following in regard to both data breaches:

  • Free credit monitoring services are usually offered to compromised customers. Should you be affected by either of these latest data breaches, an announcement will be sent with information regarding how to activate these services. However, credit monitoring only alerts you to new credit or changes to your existing credit. The criminal activity that is taking place uses existing open accounts, so no credit monitoring alerts may be triggered. You need to watch your account statements carefully.  
  • First Financial accountholders will not be responsible for any fraudulent account charges. If you suspect any fraudulent transactions, please contact Member Services immediately at 866.750.0100.

Be wary of emails or telephone calls that request information. Neither USPS, AB Acquisition LLC, SUPERVALU, nor our financial institution will ask you to provide any information in relation to this possible data breach incident.

Below are the recommended steps to remain vigilant against possible identity fraud:

  1. Check your bank statements. Review your statements carefully and repeatedly. Any purchases, large or small, should be verified as a purchase you made.
  2. Get Help. You are not responsible for fraudulent transactions on your account, but you need to notify us as soon as possible if you see any suspicious activity. Contact us with any questions.
  3. Take Action. If you suspect that your identity has been compromised, you can place a fraud alert on your credit file by calling any one of the three major credit reporting agencies shown below. A fraud alert is a notation on your credit file to warn credit issuers that there may be a problem. The credit issuer is asked to contact you at the telephone number that you supply to validate that you are the person applying for the credit. This is not the same as credit monitoring.

TransUnion: 1.800.916.8800, Experian: 1.888.397.3742, Equifax: 1.800.685.1111

In accordance with the Fair Credit Reporting Act, it is permissible for consumers to request a free copy of their credit report once every 12 months from each of the three major credit reporting agencies (TransUnion, Experian, and Equifax).

To order a free credit report –
Online: www.annualcreditreport.com or by Telephone: 1.877.322.8228.

Individuals are encouraged to report any suspected instances of identity fraud to the FBI’s Internet Crime Complaint Center at www.ic3.gov.

Don’t wait until it’s too late! Check out First Financial’s ID Theft Protection products – with our Fully Managed Identity Recovery services, you don’t need to worry. A professional Recovery Advocate will do the work on your behalf, based on a plan that you approve. Should you experience an Identity Theft incident, your Recovery Advocate will stick with you all along the way – and will be there for you until your good name is restored and you can try it FREE for 90 days!*

Our ID Theft Protection options may include some of the following services, based on the package you choose to enroll in: Lost Document Replacement, Credit Bureau Monitoring, Score Tracker, and Three-Generation Family Benefit. To learn more about our ID Theft Protection products, click here and enroll today!**

We will continue to monitor all members’ accounts for suspicious activity. If you have any additional questions or concerns, please give us a call at 866.750.0100 or email us at info@firstffcu.com. Thank you for being a valued member of First Financial.

*Available for new enrollments only. After the free trial of 90 days, the member must contact the Credit Union to opt-out of ID Theft Protection or the monthly fee of $4.95 will automatically be deducted out of the base savings account or $8.95 will be deducted out of the First Protection Checking account (depending upon the coverage option selected), on a monthly basis or until the member opts out of the program. **Identity Theft insurance underwritten by subsidiaries or affiliates of Chartis Inc. The description herein is a summary and intended for informational purposes only and does not include all terms, conditions and exclusions of the policies described. Please refer to the actual policies for terms, conditions, and exclusions of coverage. Coverage may not be available in all jurisdictions.

Article Sources: http://www.nbcnews.com/tech/security/800-000-post-office-employees-data-could-be-compromised-n245121, http://www.supervalu.com/security.html, http://www.albertsons.com/2014/08/ab-acquisition-llc-confirms-incident-involving-payment-card-data-processing/.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s