Wendy's Hack Much Larger;Class Action Suit Instigated (Updated)
Posted by: Timothy Weaver on 06/14/2016 10:27 AM
[
Comments
]
We reported about the breach of Wendy's POS system a while back. However, new data is coming to light that the breach might be larger than was previously reported.
At the time, Wendy’s spokesperson Bob Bertini said: “We have received this month from our payment industry contacts reports of unusual activity involving payment cards at some of our restaurant locations. Reports indicate that fraudulent charges may have occurred elsewhere after the cards were legitimately used at some of our restaurants. We’ve hired a cybersecurity firm and launched a comprehensive and active investigation that’s underway to try to determine the facts.”
The total infected franchises were put at 300 or about 5% of stores. Researchers have now found that there is additional activity and fraudulent activity that suggests the breach is much larger.
Bertini told Brian Krebs last week that the second wave of malware is similar in nature to the original, but different in its execution.
“The attackers used a remote access tool to target a POS system that, as of the May 11th announcement, the company believed had not been affected,” he said. “This malware has been discovered on some franchise restaurants’ POS systems, and the number of franchise restaurants impacted by these cybersecurity attacks is now expected to be considerably higher than the 300 restaurants already implicated.”
The extent of the breach has resulted in a class action suit against the company for its extensive impact on customers debit and credit cards.
Source: InfoSecurity
At the time, Wendy’s spokesperson Bob Bertini said: “We have received this month from our payment industry contacts reports of unusual activity involving payment cards at some of our restaurant locations. Reports indicate that fraudulent charges may have occurred elsewhere after the cards were legitimately used at some of our restaurants. We’ve hired a cybersecurity firm and launched a comprehensive and active investigation that’s underway to try to determine the facts.” The total infected franchises were put at 300 or about 5% of stores. Researchers have now found that there is additional activity and fraudulent activity that suggests the breach is much larger.
Bertini told Brian Krebs last week that the second wave of malware is similar in nature to the original, but different in its execution.
“The attackers used a remote access tool to target a POS system that, as of the May 11th announcement, the company believed had not been affected,” he said. “This malware has been discovered on some franchise restaurants’ POS systems, and the number of franchise restaurants impacted by these cybersecurity attacks is now expected to be considerably higher than the 300 restaurants already implicated.”
The extent of the breach has resulted in a class action suit against the company for its extensive impact on customers debit and credit cards.
Source: InfoSecurity
Comments
