January 10th, 2018 By Doug Olenick
The 266-location Jason's Deli is notifying its customers that their payment card information may have been compromised through a point of sale data breach.
The restaurant chain, which has shops in 28 states, said in a statement that it was notified by MasterCard security on December 22, 2017 that a large number of its customer's payment card information had been found on the dark web and some of it may have originated from Jason's Deli locations.
Full Article.
Jason's Deli reports possible POS data breach
Userlevel 7
+54
Userlevel 7
+54
2 million cards may have been impacted.
January 11, 2018
What Happened?
On December 22, 2017, Jason’s Deli was notified by payment processors that credit card security personnel had informed it that a large quantity of payment card information had appeared for sale on the “dark web,” and that an analysis of the data indicated that at least a portion of the data may have come from various Jason’s Deli locations. Jason’s Deli’s management immediately activated our response plan, including engagement of a leading threat response team, involvement of other forensic experts, and cooperation with law enforcement. We released a preliminary public statement on December 28, 2017 describing the situation and our initial response.
From our initial investigation findings, criminals deployed RAM-scraping malware on a number of our point-of-sales (POS) terminals at various corporate-owned Jason’s Deli restaurants (see below for a list) starting on June 8, 2017. During the course of the investigation, our response team contained the security breach and has also disabled the malware in all of the locations where it was discovered.
Full Report.
NOTICE OF DATA BREACH
January 11, 2018
What Happened?
On December 22, 2017, Jason’s Deli was notified by payment processors that credit card security personnel had informed it that a large quantity of payment card information had appeared for sale on the “dark web,” and that an analysis of the data indicated that at least a portion of the data may have come from various Jason’s Deli locations. Jason’s Deli’s management immediately activated our response plan, including engagement of a leading threat response team, involvement of other forensic experts, and cooperation with law enforcement. We released a preliminary public statement on December 28, 2017 describing the situation and our initial response.
From our initial investigation findings, criminals deployed RAM-scraping malware on a number of our point-of-sales (POS) terminals at various corporate-owned Jason’s Deli restaurants (see below for a list) starting on June 8, 2017. During the course of the investigation, our response team contained the security breach and has also disabled the malware in all of the locations where it was discovered.
Full Report.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.