Rite Aid disclosed that a cybersecurity breach in June had accessed customer data.
On June 6, an unknown third party impersonated a company employee, but the incident was detected within 12 hours.
An investigation was launched, and the breach was reported to law enforcement.
By June 17, Rite Aid confirmed that certain data had been acquired.
Those are purchaser names, addresses, dates of birth, and driver’s license numbers or other government-issued IDs from purchases between June 6, 2017, and July 30, 2018.
Need Career Advice? Get employment skills advice at all levels of your career
The company assured that social security numbers, financial information, and patient information were not accessed.
Rite Aid is notifying potentially affected customers and enhancing security measures to prevent future breaches.
Rite Aid said: “We regret that this incident occurred and are implementing additional security measures to prevent potentially similar attacks in the future.”
