Latest in Gear

Image credit: Robert Galbraith / Reuters

Chipotle finds malware exposed credit card info across the US

Take note if you ate at Chipotle in March or April this year.
1733 Shares
Share
Tweet
Share
Save

Sponsored Links

Robert Galbraith / Reuters

Hackers stole credit card information from customers at Chipotle restaurants across the United States between March 24th and April 18th, the company announced today. Chipotle revealed in April that it had been the victim of an attack, and today it shared details about the type of information stolen from customers, which covered "cardholder name in addition to card number, expiration date, and internal verification code." No other information was compromised, Chipotle said.

The attack pulled data off the magnetic strips of credit cards used in physical Chipotle locations around the US. The company has not said how many customers were affected, though it offered a searchable list of locations that were actually hit in the attack, including the dates each restaurant was vulnerable. Some were compromised for about a week, and others for the full four weeks. If you swiped a credit card at a Chipotle in March or April, check out the list of affected restaurants right here.

"Because of the nature of the incident and the type of data involved, we do not know how many unique payment cards may have been involved," Chipotle spokesperson Chris Arnold told Engadget.

As Reuters notes, Chipotle is not offering credit monitoring services to compromised customers. The company said monitoring services don't alert customers when a fraudulent charge is made in their name.

"Chipotle takes this kind of issue very seriously, and we regret any inconvenience or concern it may have caused," Arnold told Engadget. "To help prevent a similar incident from recurring, we have resolved the issue and continue to work with cyber security firms to evaluate ways to enhance our security measures."

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
1733 Shares
Share
Tweet
Share
Save

Popular on Engadget

Engadget’s guide to Home Entertainment

Engadget’s guide to Home Entertainment

View
Pixel 4 vs. the competition: The camera battle intensifies

Pixel 4 vs. the competition: The camera battle intensifies

View
The Pixel 4's Recorder app can capture and transcribe simultaneously

The Pixel 4's Recorder app can capture and transcribe simultaneously

View
Google's Nest devices can tell if you're near with 'ultrasound sensing'

Google's Nest devices can tell if you're near with 'ultrasound sensing'

View
Pixel 4 will be available through every major US carrier

Pixel 4 will be available through every major US carrier

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr