Green Bay Packers Data Breach Impacts 8,514 Customers

Legendary NFL franchise, Green Bay Packers, Inc., recently experienced a data breach that has affected 8,514 individuals in the United States. The breach occurred on the Packers Pro Shop website, packersproshop.com, between September 23-24, 2024, and October 3-23, 2024. During this time, malicious code was inserted into the Pro Shop's checkout page by an unauthorized third-party threat actor. This code allowed the attacker to view or acquire sensitive customer information entered during the checkout process.

The breach was discovered on December 20, 2024, following a forensic investigation initiated after the company was alerted to the presence of the malicious code on October 23, 2024. The investigation revealed that the malicious code targeted specific payment methods. Purchases made using gift cards, Pro Shop website accounts, PayPal, or Amazon Pay were not affected.

The exposed information includes:

• Name
• Address (billing and shipping)
• Email address
• Credit card type
• Credit card number
• Credit card expiration date
• Credit card verification number

The breach has impacted individuals across several states, including 449 in Texas, 46 in Massachusetts, and 16 in Maine. For more details, you can view the disclosure on the Maine Attorney General's website, the Texas Attorney General's website, the Massachusetts Attorney General's website, and the Vermont Attorney General's website.

Green Bay Packers, Inc's response

Green Bay Packers, Inc. took immediate action upon learning of the breach. The company temporarily disabled all payment and checkout capabilities on the Pro Shop website and engaged outside cybersecurity experts to investigate the incident. They worked with the vendor hosting and managing the website to remove the malicious code, refresh passwords, and ensure no vulnerabilities remained.

In addition to remediating the breach, the company has implemented enhanced security protocols and controls to prevent future incidents. They have also improved their technology and training and worked with their vendors to strengthen their security measures.

To support affected individuals, Green Bay Packers, Inc. is offering 36 months of complimentary credit monitoring and identity theft restoration services through Experian. Affected customers were notified via U.S. Mail on January 6, 2025, and provided with instructions on how to enroll in these services.

Steps for affected individuals

If you believe you were affected by this data breach, it is important to take immediate steps to protect your personal and financial information. Here’s what you should do:

1. Enroll in credit monitoring services: Green Bay Packers, Inc. is offering 36 months of free credit monitoring and identity theft restoration services through Experian. Follow the instructions provided in the notification letter to enroll before the April 30, 2025, deadline.
2. Monitor your financial accounts: Regularly review your bank and credit card statements for any unauthorized transactions. Report any suspicious activity to your financial institution immediately.
3. Check your credit reports: Obtain free copies of your credit reports from the three major credit reporting agencies (Equifax, Experian, and TransUnion) at AnnualCreditReport.com. Look for unfamiliar accounts or inquiries.
4. Consider placing a fraud alert or credit freeze:
5. Be vigilant for phishing attempts: Scammers may use information from the breach to impersonate legitimate entities. Avoid clicking on suspicious links or providing personal information over the phone or email.
6. Contact Experian for identity restoration support: If you suspect fraudulent use of your information, reach out to Experian’s Identity Restoration team for assistance.

For additional resources, you can visit the Federal Trade Commission’s IdentityTheft.gov website.

About Green Bay Packers, Inc

Green Bay Packers, Inc. operates the Green Bay Packers, a professional football team in the National Football League (NFL). Founded in 1919, the organization is based in Green Bay, Wisconsin, and is unique as the only publicly owned, nonprofit major professional sports team in the United States. For more information, visit their official website at packers.com.