Kroger: Difference between revisions

On 30 March, Kroger emailing firm Epsilon experienced a security breach that leaked customers names and email addresses.<ref>{{Cite web |date=1 April 2011 |title=Epsilon Notifies Clients of Unauthorized Entry into Email System |url=https://www.epsilon.com/News%20&%20Events/Press_Releases_2011/Epsilon_Notifies_Clients_of_Unauthorized_Entry_into_Email_System/p1057-l3 |url-status=dead |archive-url=https://web.archive.org/web/20110415043816/https://www.epsilon.com/News%20&%20Events/Press_Releases_2011/Epsilon_Notifies_Clients_of_Unauthorized_Entry_into_Email_System/p1057-l3 |archive-date=15 April 2011 |access-date=25 March 2026 |website=Epsilon}}</ref> On 01 April, Kroger sent letters to affected customers that described the incident being sourced from a "outside company" and warning customers of phishing attacks and spam.<ref>{{Cite web |date=1 April 2011 |title=Spammers Target Kroger Customers |url=https://krebsonsecurity.com/2011/04/spammers-target-kroger-customers/ |url-status=dead |archive-url=https://web.archive.org/web/20110403055450/https://krebsonsecurity.com/2011/04/spammers-target-kroger-customers/ |archive-date=3 April 2011 |access-date=25 March 2026 |website=KrebsonSecurity}}</ref> Several organizations asked Epsilon the amount of customers affected, however they had refused to response.<ref>{{Cite web |last=Lennon |first=Mike |date=1 April 2011 |title=Kroger Notifies Customers of Data Breach Stemming from Third-Party Email Vendor |url=https://www.securityweek.com/kroger-notifies-customers-data-breach-stemming-third-party-email-vendor/ |url-status=live |access-date=25 March 2026 |website=SecurityWeek}}</ref><ref>{{Cite web |last=Sarno |first=David |date=5 April 2011 |title=Hacking of data firm Epsilon exposes customers of 50 firms |url=https://www.latimes.com/business/la-xpm-2011-apr-05-la-fi-emails-20110405-story.html |url-status=live |access-date=25 March 2026 |website=Los Angeles Times}}</ref><ref>{{Cite web |date=2 April 2011 |title=Data breach hits JPMorgan, Kroger customers |url=https://www.reuters.com/article/business/data-breach-hits-jpmorgan-kroger-customers-idUSTRE73103G/ |url-status=live |access-date=25 March 2026 |website=Reuters}}</ref>

Mid December in 2020, Kroger was involved in a data breach that resulted in around 50 customers leaking personal after hacker infiltrated Accellion systems. Kroger became aware of the incident in 27 January, and after conducting  an investigation, released a statement around 19 February.<ref>{{Cite web |date=25 March 2026 |title=Accellion Incident |url=https://www.kroger.com/i/accellion-incident |url-status=live |archive-url=https://web.archive.org/web/20210219235325/https://www.kroger.com/i/accellion-incident |archive-date=19 February 2021 |access-date=25 March 2026 |website=Kroger}}</ref><ref>{{Cite web |last=Burgess |first=Monica |date=31 October 2025 |title=Accellion Data Breach |url=https://www.huntress.com/threat-library/data-breach/accellion-data-breach |url-status=live |access-date=25 March 2026 |website=Huntress}}</ref>