Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

PA Archive/PA Images
Musgrave group

SuperValu, Centra and Daybreak stores hit by attempted cyber attack

The Musgrave Group has urged customers to check their bank statements as a precaution.

RETAIL GROUP MUSGRAVE has advised customers to check their bank statements after the company confirmed that it was the subject of a cyber attack yesterday afternoon.

Musgrave has issued a statement to say that its network and SuperValu, Centra and Daybreak stores were affected by the attempted breach.

The supermarket and wholesale group said it detected that malicious software was trying to extract debit and credit card numbers and expiry dates from its system, but not cardholder names, PIN numbers or CCV numbers.

In response to a query from Fora, the Musgrave Group clarified that it doesn’t store customers’ PIN and CCV numbers. It referenced the data in its original statement to reassure customers that such sensitive information wasn’t exposed in the attack.

It said that there is no evidence that any personal data has been stolen at this point, but has advised customers to review activity on their bank statements as a precaution.

Data protection

Musgrave said it is now engaged in an investigation with An Garda Síochána and has notified the Office of the Data Protection Commissioner.

It said its cyber breach response team has installed a technical fix and will actively monitor the situation.

“The protection of information is an absolute priority for Musgrave,” the statement said.

The company aims to ensure that security standards are maintained at the highest levels and apologises to its customers for this issue.

The Office of the Data Protection Commissioner confirmed that is has been notified by Musgrave and is “liaising with the company in relation to the detail surrounding the attack”.

It’s not known how many stores were affected or if the attack was conducted by a domestic or international attacker.

“As this incident is now being investigated by An Garda Síochána, we would not speculate about the origin of the incident,” a Musgrave spokesman told Fora.

The company said it is working with a cyber breach response consultancy and has followed “all appropriate steps” such as installing technical fixes to its system and notifying relevant stakeholders.

Note: This article was updated to include further comment from the Musgrave Group and a statement from the Office of the Data Protection Commission.

Sign up to our newsletter to receive a regular digest of Fora’s top articles delivered to your inbox.

Written by Conor McMahon and posted on Fora.ie

Your Voice
Readers Comments
16
This is YOUR comments community. Stay civil, stay constructive, stay on topic. Please familiarise yourself with our comments policy here before taking part.
Leave a Comment
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.

    Leave a commentcancel