Customer names, addresses, e-mail addresses, phone numbers, credit card numbers, expiration dates and verification codes may have been accessed.
The J. M. Smucker Company recently began notifying an undisclosed number of customers who had placed an order at the Smucker's Online Store that their personal information may have been accessed by hackers.
The company learned on February 12, 2014 that an unauthorized user may have accessed the names, mailing addresses, e-mail addresses, phone numbers, credit or debit card numbers, expiration dates and verification codes of customers who made online purchases between December 2012 and January 2014.
In a statement on the company's Web site, CEO Richard Smucker explained, "The unauthorized user utilized a sophisticated scheme to illegally obtain this personal information as it was being entered during the online checkout process."
"We have taken numerous steps to protect the security of the affected individuals, including retiring the compromised system, working with law enforcement and providing a full package of credit protection services for two years, free of charge," Smucker wrote in the notification letter [PDF]
All those affected are being offered a free two-year membership in Experian's ProtectMyID Alert service.
Customers with questions are advised to contact (800) 742-6729.
Photo courtesy of Shutterstock.