Crimson Wine Group Files Official Notice of Data Breach Affecting 26k People | Console and Associates, P.C.

On December 13, 2024, Crimson Wine Group filed notices with the Attorneys General of Vermont and Texas after discovering that an unauthorized party gained access to its computer systems. In these notices, Crimson explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, Social Security numbers, driver’s license numbers, financial information, medical information, and dates of birth. Upon completing its investigation, Crimson began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Crimson Wine Group, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Crimson Wine Group data breach. For more information, please see our recent piece on the topic here.

What Caused the Crimson Wine Group Data Breach?

The Crimson Wine Group data breach was only recently announced, and more information is expected in the near future. However, Crimson’s filings with the Attorneys General of Vermont and Texas provide some important information on what led up to the breach. According to these sources, on June 30, 2024, Crimson Wine learned of a cybersecurity incident involving an unauthorized party being able to access its computer network. In response, Crimson Wine launched an investigation to learn more about the nature and scope of the incident, as well as whether any confidential consumer or employee information was compromised.

Through this investigation, Crimson Wine confirmed that an unauthorized party accessed its network and may have removed certain files containing confidential information between June 26, 2024 and June 30, 2024.

After learning that sensitive consumer data was accessible to an unauthorized party, Crimson Wine Group reviewed the compromised files to determine what information was leaked and which consumers were impacted. Crimson Wine completed this process on December 9, 2024. While the breached information varies depending on the individual, it may include your name, address, Social Security number, driver’s license number, financial information, medical information, and date of birth.

On December 13, 2024, Crimson Wine Group sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About Crimson Wine Group

Crimson Wine Group is a premium wine company that owns and operates a collection of boutique wineries across the United States. Headquartered in Napa, California, Crimson Wine Group focuses on producing high-quality wines from renowned wine regions, including Napa Valley, Sonoma County, Walla Walla Valley, and Oregon’s Willamette Valley. Their portfolio includes notable brands such as Pine Ridge Vineyards, Archery Summit, Seghesio Family Vineyards, and Seven Hills Winery. Crimson Wine Group employs approximately 200 people and generates an estimated $75 million in annual revenue.