Bashas’ reveals security breach

[Erica Absetz <eabsetz () opensecurityfoundation org>]

http://www.mohavedailynews.com/articles/2013/02/06/news/local/doc5112067d775dc026497324.txt

PHOENIX (AP) — An Arizona-based supermarket chain says it’s been
victimized by a cyber attack on the stores’ online systems, which
provided criminals with access to customer payment information.

Bashas’ officials say they recently located and removed a
highly-sophisticated piece of malware from its systems.

They say victims have been limited to Lake Havasu City and Pinal
County, but all customers are being warned to check their credit card
and debit card transactions.

Forensic specialists and federal law enforcement officials have begun
an investigation into the cyber attack to find those responsible.

Bashas’ officials say they’ve installed additional security measures
to protect customers’ personal information from attacks in the future.

The company operates Bashas’ supermarkets, AJ’s Fine Foods and Food City.
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.