What can you get with your pizza? How about a good dose of credit card fraud.

Cicis pizza has announced that at least 138 of its restaurant locations have been victimized by Point of Sale Malware. Texas was the most affected with 87 locations.

A forensics firm has determined in a July 19th report that the malware was introduced around March of this year. However, it also determined that a smaller percentage of shops had malware reaching back to 2015.

“While we believe most of the breaches were remedied within a few weeks of the intrusion, out of an abundance of caution we are not declaring some restaurants as threat-free until they were reviewed by our forensic analyst this month,” the company added.

"Point-of-sale systems are widely considered to be the weakest link in the security chain for retail businesses. Because checkout terminals are in constant use and usually patched less frequently, they are more vulnerable to malware that steals cardholder data," said George Rice, senior director, payments at HPE Security - Data Security, in comments. "To guard against such threats, “many leading retailers and payment organizations have already adopted data-centric security techniques, such as point-to-point encryption and tokenization to remove live data from the reach of advanced malware in insecure systems.”


Source: SCMagazine