What Happened? Bay Area Lucky supermarkets have been targeted by identity thieves, who used credit card “skimmers” attached to the terminals to collect the account numbers and PIN codes of everyone who used them to pay for their groceries. The company found out about the scam when routine maintenance at 19 locations turned up suspicious devices attached to the self-service scanners.
Date of Breach: December 2011
Size of Loss: The grocery chain admits over 100 people who used the self-checkout counters in 23 of their northern California Lucky stores (and one SaveMart).
Affected Individuals: Lucky customers
Geographic Focus: California
Data Contained: Credit card data
Additional Information: While Lucky now insists that the machines at all of its over 200 locations are now safe, the company is urging customers who used self-checkout at any of the compromised locations in October or November to immediately close their bank accounts or else risk having their identities stolen.