Cici’s Pizza Hit With Payment Card Breach, 130 Locations Possibly Involved

July 22, 2024 by
CiciÕs Pizza Hit With Payment Card Breach, 130 Locations Possibly Involved

Just when we thought it was safe to go back into the fast casual dining scene, a new data breach arises to make us all doubt internal restaurant security. This time, the troubles landed at Cici’s Pizza, a location known for its huge array of pizza choices and its quick service, as around 130 locations suffered the breach in question.

The breach in question goes back as far as March 2016, after noticing that the overall frequency of attacks was on the rise as of that month. That led to a closer investigation, which revealed that there was evidence of hacking in point of sale (POS) systems even in 2015, though it didn’t really start firing up in earnest until March. After the malware was discovered, Cici’s immediately started in with a data security review for each individual restaurant, taking steps to address any deficiencies found. A third-party cybersecurity firm was also brought in, and revealed that not only has the system been subject to malware for some time, but that the issues involved were addressed, and the problem is no longer there.

That problem may be addressed, but it’s less clear if all the problems are addressed. In June, Krebs on Security’s Brian Krebs noted he’d been able to access the malware involved in the Cici’s breach, and not only saw credit card information but also written notes between employees. That could mean separate, unresolved issues in the system.

It’s a safe bet this will mean slower sales for Cici’s, at least from the non-cash crowd. Given that it took Cici’s a while to spot this problem may make for a black eye, but there’s little doubt that Cici’s moved quickly on the issue when it found it. That could be helpful in recovering public trust, though some damage is likely already done. Whether patrons will avoid Cici’s altogether, or just switch to cash, is unclear, but we’ll likely find out the public’s reaction before too much longer.

Cici’s seems to have done what it could, and that may be enough to make the fallout short-lived and shallow, but with so many breaches happening these days, some might just call payment cards at a restaurant a proposition no longer worth exploring.

Related Articles