Skip to main content

Daily Brief: Chipotle Restaurants Hit With Malware Attack

* Attack infiltrated cash registers to steal credit card info
* Names, numbers, expiration dates and verification codes were stolen
* Attack targeted Chipotle restaurants in major cities across the US

Bad news, burrito fans. Chipotle has confirmed that a recent malware attack infected cash registers and let hackers steal sensitive credit card info. The malware was able to use the magnetic strip found on the back of most credit cards to intercept and record a cardholder’s name, card number, expiration date and internal verification code.

The attacks allegedly hit numerous U.S. cities and are said to have occurred between March 24 and April 18. That means anyone who purchased a meal during that time and paid using their card is potentially at risk.

In a recent blog post, Chipotle reported that they are working with both law enforcement and various cybersecurity firms to address the issue, confirming that there is no reason to believe any other information was stolen. “We continue to support law enforcement’s investigation and are working with the payment card networks so that the banks that issue payment cards can be made aware and initiate heightened monitoring,” the statement reads.

Pizzeria Locale, another chain operated by Chipotle was affected by this attack as well. If you want to see which locations near you were hacked, head over to this dedicated page for more information. The restaurant chain also encourages customers to call their toll-free line for more specific inquiries. The number is 888-738-0534.

If you think your credit card information may have been stolen, make sure you check and verify every credit transaction you made over the last few months. It may be tedious, but it’s worth going over your recent purchases with a fine-toothed comb.

If you do happen to find unauthorized credit card charges, contact your bank immediately.