A rash of credit and debit card fraud cases have been tracked back to accounts that were all used at various Chick-Fil-A locations around the US. The fast food restaurant joins the
ranks of
retailers with
point of sale security issues. This particular breach appears to have run from December of 2013 to September of 2014.
Chain was also targeted by pro-equality groups last year
In a post on
his blog earlier today, security analyst Brian Krebs reports that information about this breach began to arise back in November, however the floodgates opened just before Christmas. According to a financial institution insider interviewed by Krebs, roughly 9,000 account numbers from that bank alone were on the list of compromised cards. The source indicated this was more than the number of cards impacted in the Target breach
last year.
Chick-Fil-A released a statement, saying that the company "recently received reports of potential unusual activity involving payment cards used at a few of our restaurants. We take our obligation to protect customer information seriously, and we are working with leading IT security firms, law enforcement and our payment industry contacts to determine all of the facts."
"We want to assure our customers we are working hard to investigate these events and will share additional facts as we are able to do so. If the investigation reveals that a breach has occurred, customers will not be liable for any fraudulent charges to their accounts - any fraudulent charges will be the responsibility of either Chick-fil-A or the bank that issued the card," the company said. "If our customers are impacted, we will arrange for free identity protection services, including credit monitoring."
Krebs added to the company's comments, saying that consumers should bear in mind that credit monitoring services "do nothing to prevent fraud on existing accounts (such as credit cards you may have in your wallet). There is no substitute for monitoring your monthly bank and credit card statements for unauthorized or suspicious transactions."