Pizza chain discloses credit card hack
Reprints
The Cicis chain of pizza restaurants is reporting a credit card data breach at 138 locations in 17 states.
Coppell, Texas-based Cici Enterprises L.P. says on its website that while the vast majority of intrusions into its point-of-sale systems began in March 2016, a smaller percentage of affected restaurants had intrusions dating back to 2015.
A list of the restaurants affected includes 17 states, but the majority of those listed are in Texas stores. Cicis has nearly 450 corporate and franchised buffet-style pizza restaurants in 33 states, according to the company.
“Our guests are our first priority at Cicis, and when we first learned of unusual activity in our system, we took immediate action to investigate, root out and fix the problem, and enact further safety measures,” said Cicis CEO Darin Harris, in a statement. “We want to reassure our guests that all malware has been removed, and we will continue to monitor and improve our systems to protect their payment card information.”
According to its website, a forensic firm reported on Tuesday that a malicious software program had been introduced by a hacker to the point-of-sale systems used by some Cicis restaurant locations, but the threat of malware to its restaurants has been eliminated.
The company said law enforcement and state agencies have been notified and it will continue to assist in the investigation. It is recommending that customers who used a payment card at the affected restaurants during the relevant period monitor their payment card statements for unauthorized use.
A company spokesman had no further comment.
Read Next
-
To effectively combat cyber risks, always assume the worst
When it comes to cyber threats, the best attitude is a pessimistic one. Risk managers and legal and security industry leaders learned some hard truths about data breaches and other cyber threats at Business Insurance's 2015 Cyber Security Summit in San Francisco.
