Cyber Incident Victim: CircleCI
Date:
Feb 2019
Location:
United States of America
Summary
Russell Stover Chocolates experienced a security incident involving unauthorized access to retail point-of-sale systems via malware, potentially compromising payment card data including cardholder names, card numbers, and expiration dates. The breach affected in-store purchases during a limited timeframe, with no evidence of impact to online transactions or confirmed misuse of the data. The company initiated an investigation with cybersecurity experts, contained the malware, notified law enforcement and payment card networks, and implemented enhanced security measures. A dedicated call center and informational website were established to assist affected consumers.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Russell Stover Chocolates, LLC discovered a data security incident potentially impacting payment card data from purchases made at its retail stores between February 9, 2019, and August 7, 2019. The company determined unauthorized actors had possibly accessed its point-of-sale (POS) systems through malware installed at physical retail locations. Upon detection, Russell Stover immediately launched an investigation with independent cybersecurity experts to contain and eradicate the malware. The incident did not affect online purchases made through the company's website. Law enforcement and payment card companies were notified, though no evidence emerged suggesting compromised data had been misused. The malware potentially captured customers' first and last names alongside payment card numbers and expiration dates during transactions at affected stores.
Russell Stover established a dedicated call center and informational webpage to assist consumers following the breach announcement on August 30, 2019. The company emphasized monitoring payment card statements for unauthorized charges and advised affected individuals to contact their financial institutions directly to report suspicious activity. Internal response measures included enhanced employee training and improved technical security protocols to prevent future incidents. Regulatory authorities were engaged throughout the investigation, which remained ongoing at the time of the public disclosure. Russell Stover acknowledged the inconvenience to consumers while reaffirming its commitment to securing payment card data through strengthened safeguards.