Who: Graeter’s Ice Cream Online Store/Website

No. of Accounts Breached: 12,000

What was affected: Credit card information. The information entered during checkout that the unauthorized code could have potentially copied includes first and last name, address, telephone number, fax number, payment card type, payment card number, expiration date, and card verification code.

When it happened: Between June 28, 2018, to December 17, 2018

How it happened: The ice cream chain sent out 12,000 notices to customers who made purchases on Graeter’s website last year, saying that an “unauthorized code” was added to the website’s checkout page. As a result, thousands of people who purchased products online in 2018 may be at risk. Purchases made at brick-and-mortar retail stores operate on an independent system and have not been impacted.

Outcome: People who made online purchases during that time are asked to moderate their accounts for unauthorized activity.