A computer hacking incident in June aimed at drugstore chain Rite Aid has affected more than 2 million customers, the company announced Monday, adding that it has begun notifying customers.
“This data included purchaser name, address, date of birth, and driver’s license number or other form of government-issued ID presented at the time of a purchase between June 6, 2017, and July 30, 2018. To confirm, no Social Security numbers, financial information, or patient information was impacted by the incident.”
Rite Aid is offering affected customers 12 months of identity monitoring services from risk mitigation and response firm Kroll. These services will include credit monitoring, identity theft restoration, and fraud consultation.
Individuals affected by the breach can contact the firm at 1 (866) 810-8094 for more information.
The hackers gained access to 10 gigabytes of data, including 45 million lines of personal information, HackManac said in a July 12 X post. The group has set a deadline of July 26 for the ransom payment.
RansomHub claims they negotiated with Rite Aid regarding the payment but the company stopped communications, according to a screenshot posted by HackManac.
“While they suggest a global hacker community, their operations notably resemble a traditional Russian ransomware setup. Their stance on Russian-affiliated nations and the overlap in targeted companies with other Russian ransomware groups are also worth noting,” it said in a report.
Legal Action
The Rite Aid data breach has triggered class action lawsuits, including from law firms Lynch Carpenter LLC and Console & Associates.However, such a concern is “unfounded,” the law firm said in the guide.
“People who are affected by a data breach can and often do (and certainly should) protect themselves in all possible ways,” the firm said. “In many cases, these ways include taking advantage of the credit monitoring services provided by the company as well as participating in any applicable class action lawsuits against the company for failing to adequately protect the data in its possession.”
At the time, the firm received $3.45 billion in new financing from its lenders, which was expected to “provide sufficient liquidity to support the Company throughout this process.”
Rite Aid, which operates about 1,700 retail pharmacy stores in 16 states, has been shuttering dozens of stores over the past months.
The Epoch Times contacted Rite Aid for comment.