Rite Aid, the third-largest drugstore chain in the United States, has disclosed that a data breach in June 2024 exposed the personal information of 2.2 million customers. The company detected unauthorized access to its systems on June 6, 2024, which was carried out by an unknown third party using compromised employee credentials.
The breach affected data associated with purchases or attempted purchases of specific retail products between June 6, 2017, and July 30, 2018. The exposed information includes customers’ names, addresses, dates of birth, and driver’s license numbers or other forms of government-issued ID presented at the time of purchase.
Are you from SOC/DFIR Teams? - Sign up for a free ANY.RUN account! to Analyse Advanced Malware Files
Rite Aid has emphasized that no Social Security numbers, financial information, or patient health information were compromised in the incident. According to letters filed with the Office of Maine’s Attorney General, the company discovered the full extent of the breach by June 17, 2024, and has since been working to address the situation.
In response to the breach, Rite Aid has taken several steps:
- Launched an internal investigation to terminate unauthorized access and remediate affected systems.
- Reported the incident to law enforcement and federal and state regulators.
- Implementing additional security measures to prevent similar attacks in the future.
- Sending notification letters to affected customers.
- Offering 12 months of complimentary credit and identity theft monitoring services to impacted individuals.
While Rite Aid has not disclosed the identity of the attackers, a ransomware group called RansomHub has claimed responsibility for the breach. The group alleges to have obtained 10GB of customer data, potentially affecting up to 45 million individuals.
However, Rite Aid’s official statement contradicts this claim, reporting a significantly lower number of 2.2 million affected customers.
The incident has raised concerns about cybersecurity in the healthcare sector, with some experts calling for stronger federal regulations to protect patient data and ensure the security of healthcare systems.
Rite Aid has stated that the investigation into the breach is a top priority, and they are working with third-party cybersecurity experts to restore their systems, which are now fully operational. The company continues to emphasize its commitment to safeguarding personal information and addressing the incident promptly.
“Is Your System Under Attack? Try Cynet XDR: Automated Detection & Response for Endpoints, Networks, & Users!”- Free Demo