Green Bay Packers Online Store Hacked, Exposing 8,500 Customers

The Green Bay Packers’ online store was hacked in September and October, the franchise said in a data breach filing this week.

A third party threat actor inserted a malicious code on the Packers’ Pro Shop website between September 23-24 and October 3-23. Hackers might have had access to users’ name, address (billing and shipping), email address, credit card type, credit card number, credit card expiration date, and credit card verification number. Approximately 8,500 might have been exposed.

The Packers were alerted to the presence of malicious code on October 23 and temporarily disabled all payment and checkout capabilities on the Pro Shop website and began an investigation. On December 20, 2024, the Packers discovered that the malicious code may have allowed an unauthorized third party to view or acquire certain customer information entered at the checkout that used a limited set of payment options.

The franchise said its IT team, in conjunction with outside cybersecurity experts and the vendor that hosts the Pro Shop website, worked to successfully contain and remediate the security incident.

“Since that time, we have continued to take a number of steps to enhance our security protocols and controls, technology, and training,” the Packers said in a letter to customers.

The Packers recommend that anyone who may have been affected report any fraudulent activity or any suspected incidents of identity theft to a bank or other financial institution.