- Jun 9, 2013
- 6,720
Even more fast-food patrons may have a beef with The Wendy's Company, after the restaurant chain announced yesterday that the total number of restaurants affected by a point-of-sale data breach discovered last February may be “considerably higher” than originally thought.
Wendy's had previously reported in May that themalware found on certain franchised locations' POS systems affected fewer than 300 North American locations, with another 50 locations also suspected of experiencing unspecified cybersecurity issues. Victims who purchased food at these locations had their payment card data stolen and used fraudulently at other merchants.
However, according to a new press statement from Wendy's, further investigation into the incident has turned up a variant that is “similar in nature to the original but different in its execution.” This variant, which Wendy's described as “extremely difficult to detect,” was uploaded via a remote access tool to a second POS system that was not previously known to be infected. Though Wendy's did not provide any figures, the company did admit that the total number of victimized franchise restaurants is now much higher than once thought.
Wendy's emphasized that no company-operated restaurants appear to be impacted, and explained that the franchise locations were likely affected as a result of attackers stealing credentials from third-party service providers who help maintain and support franchisees' POS systems.
FUll Article. Wendy's POS breach 'considerably' bigger than first thought
Wendy's had previously reported in May that themalware found on certain franchised locations' POS systems affected fewer than 300 North American locations, with another 50 locations also suspected of experiencing unspecified cybersecurity issues. Victims who purchased food at these locations had their payment card data stolen and used fraudulently at other merchants.
However, according to a new press statement from Wendy's, further investigation into the incident has turned up a variant that is “similar in nature to the original but different in its execution.” This variant, which Wendy's described as “extremely difficult to detect,” was uploaded via a remote access tool to a second POS system that was not previously known to be infected. Though Wendy's did not provide any figures, the company did admit that the total number of victimized franchise restaurants is now much higher than once thought.
Wendy's emphasized that no company-operated restaurants appear to be impacted, and explained that the franchise locations were likely affected as a result of attackers stealing credentials from third-party service providers who help maintain and support franchisees' POS systems.
FUll Article. Wendy's POS breach 'considerably' bigger than first thought
