As many as 24 zoos across the country could have been compromised by hackers who leaked credit card information.
Krebs on Security recently reported that Service Systems Associates (SSA), a company that operates gift shops and eateries at zoos and other cultural centers across the country, confirmed that it suffered a breach of its credit and debit card processing software.
The breach was fist discovered at the Detroit Zoo, where concerns grew after officials received reports from customers. After an investigation, the zoo and SSA discovered malware installed on their point of sale systems, which leaked card numbers, cardholder names, expiration dates and the three-digit CVV security number on the back of the card.
SSA then expanded their search with the help of an outside investigation firm and discovered at least eight other locations had been compromised. The breaches all occurred between between March 23 and June 25.
"Though the investigation into this attack continues, the malware that caused the breach was identified and removed," SSA said in a statement. "All visitors should feel confident using credit or debit cards anywhere in these facilities."
The company has yet to confirm which of their other locations were hacked, although officials at the Houston Zoo have separately announced that their gifts shops were included. Krebs' industry sources suspect that attractions in at least two dozen other cities were breached, including those in San Francisco, Miami, Honolulu, Baltimore, Cincinnati, Pittsburgh, Dallas, Nashville and Salt Lake City, as well as others in Alabama, Arizona, California, Colorado, Idaho, Indiana, Michigan, Minnesota, Oklahoma, South Carolina and Texas.
As the government deadline for the more secure, EMV cards looms, hackers are increasing their focus on locations that have yet to fully upgrade their security. If your company is in need of new credit card processing software, contact 911 Software today.