Bell-Carter Foods Announced A Data Breach
Table of Contents
- By Steven
- Feb 03, 2023
Any large-scale company is at heightened risk of becoming the victim of a data breach. It doesn't always seem like the most obvious target; whether it's a power company, a grocer, or a chain restaurant, there is actually a lot of desirable information available from these companies' databases. In the U.S. alone, companies like Mcdonald's can employ millions of people, which means access to social security numbers, financial information, and other sensitive PII (personally identifying information).
How Did the Attack Occur?
The hacker accessed certain systems within the Bell-Carter databases that held sensitive employee information. The breach began on September 7, 2022, and was discovered on September 13 of the same year. A few days after the breach began, on the 8th, specifically, the company was bought by the owners of Aceitunas Guadalquivir (AG Olives), the Escalante family. The family had to deal with the breach immediately after acquiring the company, which likely did not reflect well on them. It also begs the question of whether or not the former owners were aware of the breach when it started and covered it to make the sale of the company easier.
What Information Was Viewed or Stolen?
The system that the hacker accessed contained certain employee information, including social security numbers, phone numbers, mailing addresses, full names, and salary details. It is unclear at this time if the salary information includes bank or card details, but the notice the company sent to victims said that it had no reason to believe there had been or will be any misuse of the information.
How Did Bell-Carter Admit to the Breach?
Bell-Carter sent notices to victims and the California Attorney General's Office. "We are writing to inform you of a security incident affecting Bell-Carter Foods, LLC (Bell-Carter Foods) and information that is maintained on our systems, including information about you," read the notice. We want you to understand what happened… On Tuesday, September 13, 2022, Bell-Carter Foods discovered a security incident affecting some of our systems."
What Will Become of the Stolen Information?
There is a high possibility that the hacker will sell or use the information. Alone, the names and social security numbers will go for a reasonable price on the dark web. They won't have the highest sale price; however, if the hacker accessed a lot of them, they stand to gain a lot of money from the sale. Many little things add up very quickly to many big things. There is also the possibility that the salary information included banking or card information, which would increase the risks of the victims' identity being stolen or their bank accounts being drained.
What Should Affected Parties Do in the Aftermath of the Breach?
Following a breach, one should always monitor one's emails, phone calls, and even paper mail. Not only are dangerous substances something that hackers, who have access to the dark web, would easily be able to access, but they could also send something as simple as a scam through the mail. These types of phishing attacks are more common in today's world than you would usually think, leading to many people being victimized via such methods.