GO
Loading...

Supermarket chains Supervalu, Jewel-Osco in potential data breaches

Two major grocery store chainsSupervalu and Jewel-Oscoon Friday said they may have been adversely affected by computer data breaches.

Supervalu said it is investigating a potential data breach that could have affected some of its retail food stores, including some of its associated stand-alone liquor stores.

Supervalu said the intrusion may have resulted in the theft of account numbers and other numerical information from payment cards used at some point-of-sale systems at the company's owned and franchised stores.

Read MorePF Chang's names 33restaurants in databreach

The data breach appears to have taken place during the period of June 22 through July 17, said the retailer.

Smeel Photography | E+ | Getty Images

"The intrusion was identified by our internal team, it was quickly contained, and we have had no evidence of any misuse of any customer data," Supervalu CEO, Sam Duncan, said in a statement early on Friday.

Supervalu, which had 3,763 outlets as of April, said customers can safely use their credit and debit cards in its stores.

Read MoreLessons from Target's data breach fumble

The company also said it has notified federal law enforcement authorities and is cooperating in their efforts to investigate this intrusion. It has also notified the major payment card brands.

Separately, supermarket chain Jewel-Osco's computers, which contained customer credit cared information, were affected by an "unlawful intrusion," its corporate parent said Friday, according to the Chicago Tribune.

AB Acquisition has not yet determined that any cardholder data was stolen, and it said it has no evidence of any misuse of customer data.

"We understand the inconvenience and concern an incident like this can cause, and we deeply regret that our customers' data was targeted," Mark Bates, Schief information officer at AB Acquisition, told the Tribune.

The company, which operates Albertsons stores under Albertson's and ACME Markets, Jewel-Osco, and Shaw's and Star Markets, said its computers were accessed between June 22 and July 17.

Companies in the United States, particularly retailers, have been targeted by hackers for customer data on payment cards.

U.S. retailer Target is struggling to win back customers after it suffered a huge data breach last year that resulted in the theft of 40 million payment card numbers and 70 million other pieces of customer data such as email addresses and phone numbers.

Image Source | Digital Vision | Getty Images

Michaels Stores, the biggest U.S. arts and crafts retailer, said in May it also suffered a security breach that may have affected about 2.6 million payment cards.

Reuters reported in January that smaller breaches on at least three other well-known retailers in the country took place and were conducted using similar techniques as the one on Target.

Read MoreAn inside job? Data breach hits AT&T customers

Retailers are often reluctant to report breaches out of concern it could hurt their businesses. Target only acknowledged its 2013 attack after security blogger Brian Krebs reported the breach, prompting inquiries from journalists and investors.

Most states have laws that require companies to contact customers when certain personal information is compromised. In many cases the task of notification falls on the credit card issuer.

Merchants are required to report breaches of personal information including social security numbers.

By Reuters. CNBC contributed to this report.

Contact Cybersecurity

  • CNBC NEWSLETTERS

    Get the best of CNBC in your inbox

    › Learn More

Squawk Alley