New Year Starts as Old Year Ended: Another Possible Data Breach

Jan. 5, 2015

New Year Starts as Old Year Ended: Another Possible Data Breach National fast-food restaurant chain Chick-fil-A appears to be the most recent organization to experience a network security breach resulting in the theft of its customers’ payment-card information. The company acknowledged an investigation began on Dec. 19, 2014, but said it is too early to say how many customers are affected, if any. Sources told security reporter Brian Krebs, who first reported many of 2014’s hacks including other fast-food outlets like Dairy Queen and Jimmy Johns, that locations across the country were impacted, but most of the fraud connected with the cards was perpetrated in Georgia, Maryland, Pennsylvania, Texas and Virginia.

In a statement, Chick-fil-A said the information that prompted its investigation pointed only to payment-card information being targeted and it is cooperating with law enforcement and IT professionals to ascertain if a breach actually occurred.

“We are investigating reports of potential unusual activity involving payment cards used at a few of our restaurants,” the statement said. “At this point, we are working diligently to understand all of the facts. It would be premature for us to comment further given the pending investigation, but we will share additional facts as we are able to do so.”