Possible Data Breach at Chick-Fil-A Reported

By Justin Ove

Chick-Fil-A, the popular chicken fast food restaurant chain, may have been subject to a data breach between December of 2013 and September of 2014, Krebs on Security said Tuesday.

According to Krebs, a financial institution which received an alert from a credit card association reported that all 9,000 of their credit cards listed in the alert shared Chick-Fil-A as a point of purchase. No other retailer was linked to all of the potentially compromised cards, Krebs said.

Krebs believes that any potential breach would be localized to Georgia, Texas, Virginia, Maryland, and Pennsylvania.

Chick-Fil-A said in a statement that it is investigating the possible breach and added that if a breach was discovered. “We want to assure our customers we are working hard to investigate these events and will share additional facts as we are able to do so,” according to the statement.

Customers would not be liable for any fraudulent purchases made by criminals. Additionally, Chick-Fil-A would provide free identity protection and credit monitoring to affected cardholders, the statement said.

Earlier this year, Georgia-based The Home Depot announced that more than 50 million credit and debit cards had been compromised through hacked point-of-sale terminals in its stores.

Related Reading:

• Credit Card Info of Home Depot Customers May Have Been Stolen (Sept. 2)
• Home Depot Issues Statement About Possible Security Breach (Sept. 3)
• Home Depot Calls in Outside Help to Investigate Possible Security Breach(Sept. 4)
• Home Depot Confirms Security Breach; Credit Card Information “Dating Back Months” Stolen and Sold Online (Sept. 8)
• Home Depot: Information on 56 Million Payment Cards Stolen by Malware (Sept. 18)