If you’ve eaten at a Chick-fil-A, there’s a chance you’ve been burned.
In a news release, the chicken chain admitted that it may be the latest company to experience a data breach. Chick-fil-A said it’s received “reports of potential unusual activity involving payment cards used at a few of our restaurants.”
Brian Krebs of Krebs on Security said he received initial reports about a potential card breach at Chick-fil-A as early as November, but it wasn’t until Christmas that things really took shape, when one of the major credit card associations issued an alert to financial institutions about a breach that occurred between Dec. 2, 2013, and Sept. 30, 2014.
Krebs on Security said:
One financial institution that received that alert said the bank had nearly 9,000 customer cards listed in that alert, and that the only common point-of-purchase were Chick-fil-A locations.
“It’s crazy because 9,000 customer cards is more than the total number of cards we had impacted in the Target breach,” the banking source said, speaking on condition of anonymity.
The majority of the suspicious activity came from Georgia, Pennsylvania, Maryland, Texas and Virginia, Krebs said.
Chick-fil-A said any customers affected by the breach will not be liable for fraudulent charges, and they will be provided with free identity protection services.
The company says customers who want more information can call 855-398-6439. You can also click here for a list of frequently asked questions about the potential breach.
Have you been a victim of a merchant’s data breach? Share your experiences below or on our Facebook page.