Individuals Join Legal Battle Against Arby’s Over Data Breach
Since February, a number of federal lawsuits have been filed over a data breach at Arby’s. Eight banks and credit unions have filed suit, and more recently, two individuals have filed a lawsuit. Jacqueline and Joseph Weiss claim they uncovered thousands of dollars in unauthorized charges on their Visa card after they had used the card to pay for food at Arby’s.
The lawsuits allege that Arby’s failed to adequately protect customers from data theft. The North Alabama Educators Credit Union stated in its lawsuit that “hundreds of thousands, if not millions, of credit and debit cards issued by financial institutions, including Plaintiff, were compromised due to Arby’s severely inadequate security practices.”
Attorneys for the Weisses told the Associated Press that others may still be at risk.
“There is a strong probability that entire batches of stolen information have yet to be dumped on the black market,” they state, meaning Arby’s customers “could be at risk of fraud and identity theft for years into the future.”
Hackers were able to access the restaurant’s point-of-sale (POS) systems by installing malware, and then remotely access payment card details. Anyone who used a debit or credit card to pay at the fast food chain between October 2016 through January 19, 2017 may have had their card details stolen. Early estimates predict that at least 355,000 payment cards were compromised by the breach.
Arby’s has not yet commented on the pending litigation but said, “we believe the claims are without merit and intend to vigorously defend against them.”