Who:
Rite Aid, the third-largest drugstore chain in the United States.
RansomHub ransomware gang.
What:
Rite Aid confirmed a data breach following a cyberattack in June, claimed by the RansomHub ransomware operation.
The breach compromised customer information but did not affect social security numbers, financial information, or patient information.
Rite Aid is currently investigating the attack and sending data breach notifications to affected customers.
Impact:
Operational Disruption: Rite Aid experienced a limited cybersecurity incident but has since restored all compromised systems with the help of external experts.
Customer Data Compromised: RansomHub claims to have obtained over 10 GB of customer information, including names, addresses, driver's license numbers, dates of birth, and Rite Aid rewards numbers, affecting around 45 million lines of personal information.
Ransom Demand: RansomHub added Rite Aid to its leak site, sharing a screenshot of the stolen data and threatening to leak everything in two weeks after negotiations stopped.
Security Measures: Rite Aid is working with third-party cybersecurity experts to address the attack's impact and ensure the protection of personal information.
Read the full article HERE