Cyber Incident Victim: Crimson Wine Group

Crimson Wine Group experienced an external system breach involving hacking between June 26, 2024, and an unspecified end date within that incident period. The intrusion was detected on July 15, 2024, approximately three weeks after the initial compromise. Attackers acquired personal information that included individuals' names or other personal identifiers combined with additional unspecified data elements. The breach impacted 26,238 individuals nationwide, including 21 residents of Maine. Crimson Wine Group, a commercial entity headquartered at 5901 Silverado Trail in Napa, California, engaged legal counsel Mullen Coughlin LLC to manage breach response obligations. No evidence suggests prior breach notifications from the organization within the preceding twelve-month period before this incident.

The company initiated written notifications to affected individuals on August 19, 2024, providing specific documentation to Maine residents through a dedicated disclosure file titled "Crimson_Wine_Group_-_Notice_of_Data_Event_-_ME.pdf". As remediation, Crimson Wine Group offered impacted persons twelve months of identity monitoring services through provider IDX. Legal representative Ryan Loughlin, a partner at Mullen Coughlin, formally submitted breach details to Maine authorities as counsel for the organization, listing direct contact information including telephone number (267) 930-4786 and email address [email protected]. The organizational response focused on consumer notification and identity protection provisioning without disclosed technical containment measures or system restoration timelines.