Earl Enterprises has announced a data breach at some of their restaurants exposing payment card data of the customers.
“Earl Enterprises recently became aware of a data security incident potentially affecting payment card information of a limited number of guests that dined at certain of Earl Enterprises’ restaurants.”
According to the data breach notification, potentially affected restaurants include Buca di Beppo, Earl of Sandwich, Planet Hollywood, Chicken Guy!, Mixology and Tequila Taqueria.a
Attackers were able to extract payment card data such as credit and debit card numbers, expiration dates and, in some cases, cardholder names by installing malicious software on point-of-sale systems at the affected locations.
Customers who made a payment between May 23, 2018, and March 18, 2019, at the restaurants may have been affected by this incident.
The company also confirmed that online orders paid online through third party application were not affected by the breach.
Restaurants located outside the United States were also not affected by the data breach.
The company also said they have started an internal investigation and also hired a two cybersecurity firm to investigate the issue.
According to Krebsonsecurity, at least 2 million customers payment card data was exposed in the breach.
The researcher discovered strong evidence of stolen payment card belonging to the company being sold at a cybercrime underground forum and reported it to the company on February 21, 2019.
“On Feb. 21, 2019, KrebsOnSecurity contacted Italian restaurant chain Buca di Beppo after discovering strong evidence that two million credit and debit card numbers belonging to the company’s customers were being sold in the cybercrime underground. “
Customers are advised to check their bank statements for any suspicious activity and if found notify the respective credit or debit card issuer.
You may be interested in reading:New Zero-day flaw in Google Chrome Discovered Actively Exploited in the Wild