Crimson Wine Group, a prominent wine company based in Napa, California, recently revealed a significant data breach impacting approximately 26,000 individuals. The breach, which was first identified on June 30, 2024, involved unauthorized access to the company’s computer network. Upon discovering the incident, Crimson Wine Group initiated an investigation to determine the extent of the breach and whether sensitive consumer or employee information had been compromised. The investigation concluded on December 9, 2024, confirming that the unauthorized party had accessed and potentially removed files containing confidential data.
The compromised data includes highly sensitive personal information, such as names, addresses, Social Security numbers, driver’s license numbers, financial details, medical information, and dates of birth. Crimson Wine Group took immediate action by sending out data breach notification letters on December 13, 2024, informing affected individuals about the incident and detailing the specific types of information exposed. This breach highlights the growing risks companies face in safeguarding sensitive consumer data.
In response to the breach, Crimson Wine Group is advising all affected individuals to remain vigilant and monitor their financial and personal information closely for any signs of fraud or identity theft. The company has yet to provide further details on how the breach occurred, though it is clear that the unauthorized access took place between June 26 and June 30, 2024. Individuals impacted by the breach should take proactive steps, such as placing fraud alerts on credit reports or freezing accounts, to mitigate potential risks.
Crimson Wine Group is a well-known producer of premium wines, with a portfolio that includes prestigious brands like Pine Ridge Vineyards and Seghesio Family Vineyards. With an estimated $75 million in annual revenue, the company operates boutique wineries across the U.S. While the breach may cause concern for affected individuals, Crimson Wine Group is committed to enhancing its cybersecurity measures and ensuring that consumer data is better protected moving forward.
Reference:
