The details of the payment cards of over three million of its customers Dickey's Barbecue Pit, the largest barbecue restaurant chain of USA, leaked this week to a card and fraud market known as Joker's Stash.
The security incident was discovered by Gemini advisory, a company cyber security monitoring financial fraud. The company said it discovered the infringement this week, after cybercriminals started advertising a huge collection called Bleeding Sun, which contains payment card details.
After analyzing them data in cooperation with financial institutions, Gemini stated that this data was most likely stolen after hackers they violated it POS (Point-of-Sale) system used by Dickey's Barbecue Pit restaurants.
According to Gemini, the hackers broke into 156 of Dickey's Barbecue Pit's 469 restaurants in 30 US states. The company added that the biggest violations were found in the restaurants of the chain in California and Arizona.
The cybersecurity company estimates that payment card details were stolen between July 2019 and August 2020. archives payment cards are mainly for cards that use outdated technologies magstripe and sold at an average price of $ 17 per card.
Dickey's Barbecue Pit commented on the security incident that took place in its restaurants stating the following: "We have received a report that a security incident has occurred that endangers our customer payment card details. We take this incident seriously, as we immediately started the response protocol and research. We are currently focusing on identifying affected sites and time frames. We use the experience of third parties who have helped other restaurants deal with similar security incidents, while working with FBI as well as with networks payment cards. We understand that the rules of the payment card network generally stipulate that individuals who report unauthorized charges to the card issuing bank in a timely manner are not responsible for such charges. "