Atlanta-based Arby’s restaurants has acknowledged a data breach involving approximately a number of its corporate-owned locations, reports Krebs On Security. The breach is estimated to have occurred between Oct. 25, 2016, and Jan. 19.
According to reports, the breach involved malware placed on payment systems only at corporate locations, which are approximately one-third of the company’s more than 3,330 locations. An Arby’s official says not all of the corporate locations were affected, but more than 355,000 card numbers may have been exposed.
CUNA is a strong advocate for data breach legislation that includes a strong, scalable security standard for merchants, as well as a notification standard in the event of a breach.
Credit unions that have questions can email email@example.com to communicate with outside counsel who are working with CUNA to address merchant data breaches.