Choctaw location is only compromised site in Oklahoma
By Ryan Horton
Fast-food chain Wendy’s announced last Thursday that customers’ personal information was compromised in a series of cyber attacks that started last year.
Wendy’s has been investigating “unusual payment-card activity” since early this year, and they announced that cardholder names, credit and debit card numbers and expiration dates are among data targeted in a 6-month attack on point-of-sale systems at over 1,000 franchise-operated restaurants.
While the security breaches hit approximately 1,025 franchise-operated restaurants, the Wendy’s location at Choctaw Road and Interstate 40 is the only Oklahoma location believed to have been affected.
The attack, discovered in May, had been underway since November.
Wendy’s says none of the 582 company-operated restaurants were affected, but at least over 1,000 of the 5,100 U.S. franchised restaurants were targeted.
Many franchisees contract with third-party service providers for point-of-sale system support, while Wendy’s provides that support internally for its company-owned locations.
“We are committed to protecting our customers and keeping them informed. We sincerely apologize to anyone who has been inconvenienced as a result of these highly sophisticated, criminal cyberattacks involving some Wendy’s restaurants,” said Todd Penegor, President and CEO, in a new press statement. “We have conducted a rigorous investigation to understand what has occurred and apply those learnings to further strengthen our data security measures.”
The Dublin, Ohio-based company is already the subject of multiple class-action lawsuits filed on behalf of affected cardholders and the financial institutions that issued payment cards to them.
Affected customers can receive a year of complimentary fraud consultation and identity restoration services.
The list of locations with addresses is searchable at www.wendys.com/en-us/about-wendys/the-wendys-company-updates#drop_down.
For more information call 866-779-0485.