Rainbow Grocery reports Data Breach via a card skimmer

Rainbow Grocery, based in San Francisco, has announced a data privacy incident that may have affected the personal information of a limited number of customers.

The affected customers are those who made purchases between February 10 and February 26, 2023, using a payment card on one of the PIN pads of Rainbow Grocery. The incident was caused by the discovery of a card skimmer on a cash register PIN pad.

Rainbow Grocery removed the skimmer, initiated an investigation with third-party specialists, notified law enforcement, and informed affected individuals through media notices and electronic mail.

Rainbow Grocery is offering credit monitoring, identity restoration services, and guidance on protecting against identity theft, while also providing contact information and resources for affected individuals to obtain credit reports and place fraud alerts or security freezes on their credit files.