---
schema_version: "secwatch.filing_event.v1"
accession: "0001562151-24-000032"
form_type: "8-K"
ticker: "CWGL"
cik: "0001562151"
company_name: "Crimson Wine Group, Ltd"
filed_at: "2024-07-25T23:59:59+00:00"
generated_at: "2026-05-31T16:17:20.048153+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.75
calibrated_materiality_score: 0.75
confidence: "high"
source: SEC EDGAR
---

# Crimson Wine Group determines June cyber incident had material impact on operations; data exfiltrated

## Summary
- On July 25, 2024, Crimson Wine Group determined the June 30 cyber incident likely had a material impact on business operations.
- Unauthorized third party exfiltrated files potentially containing sensitive personal information; investigation ongoing.
- Company shut down certain systems, causing disruption despite workarounds; operations substantially restored.
- Company believes incident has not had material impact on overall financial condition or results of operations, and holds adequate cyber insurance.
- Company faces risks including potential litigation, regulatory scrutiny, and changes in customer behavior.

## SEC filing metadata
- accession: 0001562151-24-000032
- form_type: 8-K
- ticker: CWGL
- cik: 0001562151
- company_name: Crimson Wine Group, Ltd
- filed_at: 2024-07-25T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.75
- calibrated_materiality_score: 0.75
- confidence: high
- sec_items: 1.05
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1562151/000156215124000032/0001562151-24-000032-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1562151/000156215124000032/cwgl-20240725.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0001562151-24-000032
- JSON: https://secwatch.observer/filing/0001562151-24-000032.json
- Plain text: https://secwatch.observer/filing/0001562151-24-000032.txt

## Key facts
- Cybersecurity Incidents
  Crimson Wine Group, Ltd disclosed a cybersecurity incident: Unauthorized third party gained access to certain information systems and exfiltrated files potentially containing sensitive personal information. Impact: Likely had a material impact on business operations, causing disruption and system shutdowns; financial condition and results of operations not materially impacted. Company determined it material. Discovered 2024-06-30.
  - Nature: Unauthorized third party gained access to certain information systems and exfiltrated files potentially containing sensitive personal information.
  - Impact: Likely had a material impact on business operations, causing disruption and system shutdowns; financial condition and results of operations not materially impacted.
  - Materiality: determined material
  - Discovery: 2024-06-30
  source text: the Company determined that the cybersecurity incident has likely had a material impact on the Company’s business operations.
  evidence_url: https://www.sec.gov/Archives/edgar/data/1562151/000156215124000032/0001562151-24-000032-index.htm

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.
