Possible Card Breach at Some Chick-fil-A’s Locations

31 Dec 2014 | Author: | No comments yet »

Banks: Card Breach at Some Chick-fil-A’s.

Chick-fil-A is looking into the possibility of a breach of credit cards used at some of its locations, according to an online site that broke the story about Home Depot’s hack. WASHINGTON–(BUSINESS WIRE)–National Association of Federal Credit Unions (NAFCU) President and CEO Dan Berger renewed the association’s push for national data security and breach notification standards for retailers amid news of a possible data breach at Chick-fil-A chain restaurants. “Unfortunately, 2014 has turned out to be the year of the data breach and now we have the latest report of yet another retail data breach,” said Berger. “Congress must make passing a national data security standard for retailers a top priority when it returns next week.Chick-Fil-A, the wildly popular chicken fast food restaurant, may have been subject to a data breach between December of 2013 and September of 2014, Krebs on Security said Tuesday.Sources at several U.S. financial institutions say they have traced a pattern of credit card fraud back to accounts that all were used at different Chick-fil-A fast food restaurants around the country. According to Krebs, a financial institution which received an alert from a credit card association reported that all 9,000 of their credit cards listed in the alert shared Chick-Fil-A as a point of purchase.

Though it’s not yet confirmed where this data breach might have occurred, fast food chain Chick-fil-A is the most likely source, reports independent security journalist Brian Krebs. We take our obligation to protect customer information seriously, and we are working with leading IT security firms, law enforcement and our payment industry contacts to determine all of the facts.” “We want to assure our customers we are working hard to investigate these events and will share additional facts as we are able to do so. Since Target’s data breach, there has been a major data breach discovered almost every month, with breaches reported at Home Depot, Michaels stores, Sally Beauty Supply, Neiman Marcus, AOL, eBay, P.F.

If the investigation reveals that a breach has occurred, customers will not be liable for any fraudulent charges to their accounts — any fraudulent charges will be the responsibility of either Chick-fil-A or the bank that issued the card. KrebsOnSecurity first began hearing from banks about possible compromised payment systems at Chick-fil-A establishments in November, but the reports were spotty at best.

Then, just before Christmas, one of the major credit card associations issued an alert to several financial institutions about a breach at an unnamed retailer that lasted between Dec. 2, 2013 and Sept. 30, 2014. There have been 761 breaches that have occurred in 2014 thus far, according to the Identity Theft Resource Center – approximately a 25 percent increase from last year.

The association has also written Congress urging it to create a bipartisan-bicameral working group to develop legislative responses to retailer data security breaches. Earlier this year, Georgia-based The Home Depot announced that over 50 million credit and debit cards had been compromised through hacked point-of-sale terminals in their stores. The task force is a diverse group of participants in the payments industry focused on EMV chip implementation, including ways to help reduce testing and implementation time, as well as driving a discussion on payments system security. If our customers are impacted, we will arrange for free identity protection services, including credit monitoring.” My suspicion is that — if confirmed — this breach will be found to have impacted only a subset of Chick-fil-A’s 1,850 locations in 41 states and the District of Columbia.

NAFCU is also a member of the Financial Services Sector Coordinating Council and the Financial Services Information Sharing and Analysis Center, which work on infrastructure cybersecurity. In both of those breaches, the stores impacted were franchises that outsourced the management of their point-of-sale systems to specific third party companies. In September, KrebsOnSecurity reported that a different hacked point-of-sale provider was the driver behind a breach that impacted more than 330 Goodwill locations nationwide.

Secret Service issued an advisory that a point-of-sale malware strain known as “Backoff” had struck more than 1,000 U.S. companies since Oct. 2013. Companies that suffer credit card breaches offer credit monitoring services as a means of placating nervous customers, but bear in mind that credit monitoring services do nothing to prevent fraud on existing accounts (such as credit cards you may have in your wallet).

Here you can write a commentary on the recording "Possible Card Breach at Some Chick-fil-A’s Locations".

* Required fields
All the reviews are moderated.
Our partners
Follow us
Contact us
Our contacts

About this site