In a significant data breach incident tied to the global grocery retail giant Ahold Delhaize USA, more than 2.2 million individuals have been confirmed as victims of a cybersecurity attack that occurred in November 2024. The breach has only recently come to light following official disclosures, with new details revealing the scale of the compromise—including the exposure of sensitive personal, financial, and medical data.
Internal File Repository Breach Triggers Massive Exposure
Ahold Delhaize USA stated in its notification that the cyberattack involved unauthorized access to internal file repositories, which held employment records tied to individuals and their family members. The attacker reportedly had access to these files between November 5 and November 6, 2024.
The company finally disclosed the breach to regulators and affected individuals in June 2025—seven months after the incident. It clarified that the breached data was collected to provide “support services to Ahold Delhaize USA companies.”
Exposed information included:
- Full names
- Contact details (postal, email addresses, phone numbers)
- Dates of birth
- Government-issued ID numbers (Social Security, driver’s license, passport numbers)
- Bank account details
- Employment-related records
- Medical and workers’ compensation information
The breach affected more than 2.2 million people nationwide, with over 95,000 residents in Maine alone. The company has not stated how many of those impacted were employees, contractors, or customers.
Risk of Identity Theft and Medical Fraud
With such a broad range of data compromised, security experts warn that affected individuals may face heightened risks of identity theft, financial fraud, and phishing attacks. Medical records, in particular, are lucrative on dark web markets, often sold for fraudulent Medicaid claims and insurance fraud.
Though the company stated it had no evidence of misuse so far, it is offering complimentary credit monitoring and identity protection services to those impacted.
Retail Operations Disrupted, Shelves Left Empty
While the incident was initially classified as a “cybersecurity event,” its effects were visibly felt in Ahold Delhaize USA’s retail operations. Customers across the New England region noticed bare shelves, especially in Stop & Shop stores. The disruption, believed to be tied to shipment and logistics system outages, coincided with the timeframe of the breach.
A user on X posted:
“All over New England the food chain Stop and Shop and its pharmacies have been hacked since right before the election. Shelves are bare, and no one working in the stores can explain why.”
Although the company’s official statements have not confirmed the attack’s operational fallout, some store managers acknowledged that scheduled deliveries were impacted.
A Prime Target in the Retail Sector
As the largest grocery retailer on the U.S. East Coast and the fourth largest in the country, Ahold Delhaize USA serves over 2,000 stores under major brands including Stop & Shop, Giant Food, Food Lion, Hannaford, and The GIANT Company. Its annual sales exceed $58 billion.
This status makes it a high-value target for cybercriminals. In an era where ransomware and data extortion are rapidly increasing in frequency and sophistication, the food retail sector has become an appealing target due to its dependence on just-in-time supply chains and large-scale customer data.
