Hackers Attack Chipotle Restaurants, Steal Customers’ Credit Card Information

A cybersecurity attack that hit most Chipotle restaurants allowed hackers to steal credit card information from customers, according to CNN.

The burrito chain first announced the breach last month, before revealing in a blog post on Friday (May  26) the kind of malware used in the attack and a list of the restaurants that were affected. Locations affected includes many major U.S. cities, “but not all restaurants may have been involved,” said spokesman Chris Arnold.

READ: Chipotle Might Dive Into The Burger Business

Breaches occurred between March 24 and April 18, and the malware used worked by infecting cash registers and capturing information stored on the magnetic strip on credit cards, called “track data.” Chipotle said track data sometimes includes the cardholder’s name, card number, expiration date and internal verification code.

“During the investigation we removed the malware, and we continue to work with cyber security firms to evaluate ways to enhance our security measures,” the blog post reads.

A list of the restaurants and times they were affected can be found on Chipotle’s website.

Read more here.