Cici’s Pizza Confirms Credit Card Data Breach
Cici’s Pizza has confirmed earlier reports that customer credit card information was stolen in a recent data breach.
The breach began in 2015 and has affected more than 135 locations. But the “vast majority of intrusions” started in March 2016, according to Cici’s announcement. At that time, the company received reports from many of its locations, saying the point-of-sale (POS) systems were not working correctly. The restaurant chain’s POS vendor discovered malware and began a security review, and Cici’s hired a third party cyber security firm to determine the extent of the data breach.
According to Cici’s, the forensic firm confirmed on July 19 that a hacker had attacked certain POS systems with malicious software. The company also announced that the malware has been eliminated.
A full list of affected restaurants can be found on the company’s website. Cici’s advises anyone who has shopped at these restaurants to closely monitor their credit card statements for fraudulent activity. The Texas-based restaurant chain also suggests that customers request a free copy of their credit report to ensure they have not been the victims of identity theft.
Cici’s says it is working with law enforcement and state agencies to assist with the ongoing criminal investigation.