Wendy’s hack was bigger than thought and exposed credit card data

A data breach that hit Wendy’s fast food restaurants was more than three times bigger than originally disclosed and exposed customer credit card data.

The company said Thursday that malware installed in point-of-sale systems was discovered at over 1,000 of its franchised U.S. restaurants — a big jump from the “fewer than 300 stores” it said in May had been affected.

Hackers gained access to the machines using remote access credentials of a third-party service provider, Wendy’s said.

The breach began in fall 2015 and wasn’t discovered until early this year. As part of its investigation, the company discovered a second malware variant had infected its systems.

To read this article in full or to leave a comment, please click here