Cyber Incident Victim: Weingarten Realty Investors

On February 8, 2023, Weingarten Realty Investors, an information technology network operated by Kimco Realty Corporation following its acquisition of Weingarten, experienced a cyberattack. Kimco secured and restored the compromised systems, notified law enforcement agencies, and engaged third-party cybersecurity specialists to investigate the incident. The investigation confirmed unauthorized actors accessed certain files within Weingarten's IT network. Further analysis determined these files contained confidential information belonging to current and former Weingarten employees, their beneficiaries, and individuals with commercial relationships with the company. The breach exposed sensitive personal data including names, dates of birth, Social Security numbers, health insurance information, bank account details, and driver's license numbers. Kimco completed its review of the compromised files to identify affected individuals and specific data elements involved.

Kimco Realty Corporation filed a formal notice of the data breach with the Texas Attorney General on April 14, 2023. The company subsequently initiated data breach notification letters to all impacted individuals on the same date. The compromised information significantly increased risks of identity theft and fraud for affected parties. Kimco's public disclosures through regulatory filings confirmed the breach originated within Weingarten's systems prior to Kimco's acquisition and subsequent integration of operations. The incident affected an undisclosed number of individuals associated with Weingarten Realty Investors, though the company's annual revenue of $1.7 billion and workforce of 637 employees provided context for operational scale. No additional technical specifics regarding attack vectors, threat actor attribution, or containment timelines were disclosed beyond the confirmed system restoration and investigative collaboration with cybersecurity experts.