According to the company, a part of its payment system must have been attacked for the second time in the latter part of August or early September.
SUPERVALU INC. (NYSE:SVU) said the hacker installed a different malware into a portion of its computer network at some of its company-owned and franchised stores including Shop ’n Save, Shoppers Food & Pharmacy, Cub Foods, and its associated stand-alone liquor stores.
The management of SUPERVALU INC. (NYSE:SVU) believed that the attack was separate from the previously announced hacking incident on August 14. The company immediately implemented steps to secure the affected part of its network after discovering the second intrusion, and believed that the malware has been removed. The company said an investigation regarding the new cyberattack is underway. Federal authorities and major payment card brands have been informed about the incident.
SUPERVALU believes the newly discovered malware failed to steal data
SUPERVALU INC. (NYSE:SVU) expressed confidence that its enhanced protective technology limited the ability of the newly discovered malware to steal data from payment cards.
The company believes that the newly discovered malware did not succeed in capturing data from payment cards used at any stores other than at some checkout lanes at four Cub Foods franchised stores.
SUPERVALU INC. (NYSE:SVU) said it has “made no determination that any cardholder data was, in fact, stolen by the intruder.”
Sam Duncan, president and CEO of SUPERVALU INC. (NYSE:SVU) said, “We care greatly about our customers, and the safety of their personal information will continue to be a top priority for us. We’ve taken measures to install enhanced protective technology that we believe significantly limited the ability of this malware to capture payment card data, and we will continue to make these investments going forward.”
Previous data breach
Last month, SUPERVALU INC. (NYSE:SVU) disclosed that cybercriminals attacked its computer network that processes card payments transactions. The company believed that the hackers may have stolen the customer’s payment card information used at some of its company-owned and franchised stores from June 22 to July 17. The investigation on the first hacking incident is still ongoing.