+1 I think breaches need to be treated like hard drive failures. When, not if. And the response is the important point.
On Thu, Jun 6, 2013 at 7:23 PM, Steven Peck <[email protected]> wrote: > Eh? > > They immediately notified their customer base with the information they > have. They stated clearly they do not collect SS#s, they don't yet know if > it got to their CC/Debit card data but rather then just look around for a > couple of days they immediately notified their customer base to look for > anomalies. They indicate they are investigating further and have provided > a dedicated contact number for people to contact..... It's a banner link on > the top of their website. > > While this is certainly not happiness and light it isn't head in the > ground avoidance either. This reaction/disclosure makes me happier with > them myself. > > Steven Peck > http://www.blkmtn.org > > > ------------------------------ > Date: Thu, 6 Jun 2013 15:26:18 -0700 > Subject: [NTSysADM] Fwd: Fw: Raley's targeted in cyber attack > From: [email protected] > To: [email protected] > > > My wife just received this today. I am not getting any warm fuzzies from > Raley's right now. > > I wonder how many other grocery store chains have the same problem? > > *From:* Raley's Stores <[email protected]> > *Sent:* Thursday, June 06, 2013 2:39 PM > *To:* > *Subject:* Raley's targeted in cyber attack > > > > > > To Our Customers: > > Raley's Family of Fine Stores has recently discovered that a portion of > our computer network systems may have been the target of a complex, > criminal cyber attack. > > We immediately initiated an investigation to determine whether cyber > criminals may have obtained customer credit and debit card information. At > this time, we have not confirmed any unauthorized access to payment card > data, but our investigation remains ongoing. We have no reason to believe > that debit PIN numbers could have been accessed. We do not collect Social > Security or drivers' license numbers in association with payment card > transactions. > > Raley's has taken a series of immediate steps to enhance the security > measures already in place to protect customer data. We are confident that > our customers can continue using their payment cards in its stores. > > We sincerely regret any inconvenience this incident may have caused and > wanted to reach out to our customers to encourage you to: > > - Check and monitor your bank and credit card statements for evidence > of unauthorized transactions. > - Contact your bank or credit card company if you identify suspicious > charges. > - Cardholders are not typically held responsible for fraudulent > charges made by unauthorized parties if reported promptly to the card > issuer. > > You can contact our dedicated response team from 7 a.m. to 10 p.m. every > day: > *Phone: 800-925-9989* > > Visit our website, > www.raleys.com<http://click.raleysstores.com/?qs=da4fcff048fbacbc397613d419c225f9bd7c13b4979f2ffff70a794b2eabcf3c46f7303e28f583ca>, > for updates and to see our customer fact sheet. > > You can also learn more about fraud from the California Office of Privacy > Protection > website<http://click.raleysstores.com/?qs=da4fcff048fbacbc088102341b06f7a09367e61396bc9e6c4a4a4958fcfbc11b75b7fb5a708688ab>and > the Federal > Trade Commission's Consumer Information > website<http://click.raleysstores.com/?qs=da4fcff048fbacbc9aa27959e4a42a90426a68b7e94f9435b198d90c0ce2a6b8213199665eb14db3>. > > > [image: Raleys Bel Air and Nob Hill Logos] > > ------------------------------ > > This is a non-commercial account notification from Raley's Family of Fine > Stores > 500 West Capitol Avenue > West Sacramento, CA, 95605, USA > > > > > > > > -- > Thank you, > Mike Sullivan > >
