Katie Nelson reports:
The Raley’s supermarket chain warned customers Thursday that part of the company’s computer network may have been targeted in a cyber attack.
The company stated in a news release that it could not confirm if any unauthorized access had been made to payment card data, but that an internal investigation remains ongoing. However, the company said it did not believe that debit PINs could have been accessed.
Raley’s does not collect Social Security or driver’s license numbers with payment card transactions.
Since the discovery of the cyber attack, the company said it has taken steps to enhance security measures already in place to protect customer data.
Read more on Contra Costa Times.
A statement, prominently linked from Raley’s home page on June 7, states:
Raley’s Family of Fine Stores has recently discovered that a portion of its computer network systems may have been the target of a complex, criminal cyber attack.
The company immediately initiated an investigation to determine whether cyber criminals may have obtained customer credit and debit card information. At this time, the company has not confirmed any unauthorized access to payment card data, but its investigation remains ongoing. Raley’s does not believe that debit PINs, could have been accessed.
We do not collect Social Security or drivers’ license numbers in association with payment card transactions.
The company has taken a series of immediate steps to enhance the security measures already in place to protect customer data. The company is confident that customers can continue using their payment cards in its stores.
“Our customers’ peace of mind is our top priority. We take protecting our customers’ privacy seriously and sincerely regret any inconvenience that the attack on our network may have caused,” said Mike Teel, Raley’s President & CEO. “We are working around-the-clock to gather details to determine the extent of any possible compromise of customer information.”
Raley’s has a dedicated response team available to answer customer questions and is providing customers updates as they become available at www.raleys.com. The company encourages customers who have used credit and debit cards at Raley’s, Bel Air, Nob Hill Foods, Food Source stores or Aisle One fuel stations to take the following steps to protect their accounts:
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – –
1. Check and monitor your bank and credit card statements for evidence of unauthorized transactions.
2. Contact your bank or credit card company if you identify suspicious charges.
3. Know that cardholders are not held responsible for fraudulent charges made by unauthorized parties if reported promptly to the card issuer.
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – –
Customers can reach Raley’s dedicated response team from 7 a.m. to 10 p.m. every day.
Phone: 800-925-9989
Website: www.raleys.com
For more information, see our customer fact sheet on cyber attacks.
The FAQ contains some additional details, such as the fact that this breach was not initially detected internally but was reported to Raley’s by a major credit card company. The chain does not indicate how many customers may have been affected, but I imagine we will find out eventually when this breach gets reported to states that require such disclosure.