Independent security blogger Brian Krebs recently reported that fast food company Chick-fil-A is the latest business to suffer a point-of-sale security breach.
Krebs received a report from an unknown financial institution, alleging that nearly 9,000 of its customers' payment cards were compromised as the result of a breach at an as-of-yet unnamed retailer. The breach reportedly occurred between Dec. 2, 2013 and Sept. 30, 2014, and the anonymous source told Krebs that the only point-of-sale common to all of the 9,000 cards was Chick-fil-A.
"It's crazy because 9,000 customer cards is more than the total number of cards we had impacted in the Target breach," said the source.
The fraud seems to be concentrated around Chick-fil-A locations in Texas, Georgia, Pennsylvania, Maryland and Virginia. Krebs predicted that the breach will prove to be similar in nature to that of the Dairy Queen and Jimmy John's breaches experienced in 2014, since the stores impacted in those scenarios were franchised locations.
The data breach at Chick-fil-A apparently occurred as the result of malware installed on the stores' point-of-sale systems, which was created to steal the information on the magnetic strips of customers' credit cards.
Chick-fil-A is currently conducting an investigation into the breach, and has assured customers that they will not face any financial penalties or have to pay for any fraudulent charges that may be made on their accounts.
If you own a business, why not start the new year off right? Upgrade your credit card processor so you don't have to clean up the mess of a data breach. Your customers trust you to keep their information secure, so make certain that your point-of-sale system is up-to-date and protected.