- There is still no confirmation if data violation affected customers
- Stolen data vary from person to person, but generally includes confidential PII
- Inc ransom assumed the responsibility of the attack
When cybercriminals hit Delhaize in November 2024, they stole confidential data in more than 2.2 million people, the company has revealed.
The food retailer giant confirmed the news in a new form, recently presented to the Maine Attorney’s Office, which did not specify whether, among the stolen documents, it was information belonging to its clients.
However, he said that internal employment records may have included for current and previous employees. The combination of stolen data varies from person to person, but in general, it includes full names, postal addresses, email addresses, telephone numbers, birth dates, identification numbers issued by the Government, bank account numbers, health information and other information related to employment.
Customer concerns
Ahold Delhaize confirmed to suffer a cyber attack that forced him to close parts of his IT infrastructure.
As a result, some of its grocery stores and pharmacies, mainly those of the United States, could not serve their customers properly. The company operates a variety of supermarkets, convenience stores and brands of online groceries in Europe and the United States, including brands such as Food Lion, Stop & Shop and Giant.
It operates about 7,910 stores in Europe, the United States and Indonesia, and serves around 72 million customers weekly. At the end of April 2025, he confirmed that the attackers stole sensitive files and said he was investigating the matter.
The company never announced the name of the attackers, but a group that calls itself inc ransom added to Hold Delhaize to its Dark Web Extortion page in April 2025
At that time, he leaked a sample of documents, confirming the authenticity of the violation and suggesting that the negotiations on a rescue payment were underway.
In addition to announcing the theft, the company also said that it would offer 24 months of free credit monitoring and identity theft protection services to the people affected through Experian, which includes $ 1 million in identity robbery insurance coverage.
Through Bleepingcomputer
