Musgrave group detects cyber attack
Musgrave Retail Group has been the subject of a cyber attack that may have accessed customers' payment details, the company has said in a statement.
10 October 2017 | 0
The Musgrave retail group has confirmed that it has been the subject of a cyber attack, impacting SuperValu, Centra and Daybreak stores.
In a statement issued this week, the group said it had detected malicious software in its network that was attempting to extract debit and credit card numbers and expiry dates, but not the cardholder name, PIN or CCV numbers.
While there is no evidence that any data has been stolen at this point, Musgrave said it is advising any concerned shoppers to review activity on their statements “as a precautionary measure.”
The company is engaged in an investigation of the incident with the Gardaí, and has notified the Office of the Data Protection Commissioner, ths statment said.
“The protection of information is an absolute priority for Musgrave,” a spokesperson said ,”with a range of security solutions including threat-monitoring, anti-virus software, firewall and penetration testing deployed. The company aims to ensure that security standards are maintained at the highest levels and apologises to its customers for this issue.”
Reacting to the announcement, Brian Honan, cyber security expert and founder of BH Consulting commended Musgrave for involving the gardaí and the ODPC at an early stage, adding that it will help protect any affected customers and may enable law enforcement to find who is behind the attack.
“It will be a key issue to determine what kind of malware was used,” Honan said, “and whether it targeted Musgrave’s computer systems or Point Of Sale (PoS) networks.”
This information the investigation gleans will be valuable to other organisations, he added, so they can take necessary steps to protect themselves.