Sponsored By

Hy-Vee notifies customers of payment data breach

Retailer detected unauthorized activity on its payment processing system

Michael Browne, Executive Editor

August 15, 2019

2 Min Read
Supermarket News logo in a gray background | Supermarket News

Supermarket chain Hy-Vee has revealed that the credit card payment information of some of its customers has been exposed in a recent data breach. The exact number of customers and locations has not yet been determined.

The West Des Moines, Iowa-based operator of 245 stores says there was a "security incident" involving the payment processing systems at its fuel pumps, drive-through coffee shops and restaurants. The restaurants include its Market Grilles, Market Grille Express and company-owned Wahlburgers locations operating at its stores.

In a statement released yesterday, Hy-Vee said, “After recently detecting unauthorized activity on some of our payment processing systems, we immediately began an investigation with the help of leading cybersecurity firms. We also notified federal law enforcement and the payment card networks. We believe the actions we have taken have stopped the unauthorized activity on our payment processing systems.”

The company added that the investigation is focused on card transactions at the fuel pumps, coffee shops and restaurants, which have different point-of-sale systems than those located at Hy-Vee grocery stores, drugstores and inside convenience stores. Those systems utilize point-to-point encryption technology for processing payment card transactions, which protects card data by making it virtually unreadable.

Related:Hy-Vee tests grocery shopping app to reduce food waste

“Based on our preliminary investigation,” Hy-Vee said, “we believe payment card transactions that were swiped or inserted on these systems, which are utilized at our front-end checkout lanes, pharmacies, customer service counters, wine & spirits locations, floral departments, clinics and all other foodservice areas, as well as transactions processed through Aisles Online, are not involved.”

Because the investigation is in its earliest stages, Hy-Vee did not have any additional details to provide at this time. The retailer will provide notification to its customers regarding specific time frames and locations that may have been involved as that information becomes available.

About the Author

Michael Browne

Executive Editor, Supermarket News

Michael Browne joined Supermarket News in 2018 after serving in managing and executive editor capacities at leading B2B media brands including Convenience Store NewsLicense Global and Travel Agent. He also previously served as content production manager for print and digital in the Business Intelligence division of Informa, parent company of Supermarket News and Nation’s Restaurant News.

As executive editor, Mike oversees the editorial content of supermarketnews.com as well as the monthly print publication. He also directs all content-based brand-related projects including the annual Top 75 Retailers report, Category Guide, Retailer of the Year, research surveys and special reports, as well as podcast and webinar content. Mike has also presented and moderated at industry events.

In addition to the positions mentioned above, Mike has also worked as a writer and/or editor for special projects at American Legal Media (ALM), managing editor for Tobacco International, special projects editor at American Banker • Bond Buyer, and as production editor for Bank Technology News and other related financial magazines and journals published by Faulkner & Gray.

A graduate of Fordham University, Mike is based in New York City, where he was born and raised.

Contact Mike at [email protected] or follow him on Twitter and LinkedIn.

 

Stay up-to-date on the latest food retail news and trends
Subscribe to free eNewsletters from Supermarket News

You May Also Like