The Houston-based steakhouse, restaurant and hospitality company Landry's, Inc. has advised customers of a point-of-sale malware attack that stole payment card data from an order-entry system used to process kitchen and bar orders.
According to a company breach notification, Landry's food and beverage locations typically use point-of-sale terminals featuring end-to-end encryption technology that protects the data stored on payment cards' magnetic stripes. Orders placed on these devices were safe. However, at least some of these outlets also feature a second system intended to enter kitchen and bar orders and to swipe Landry’s Select Club reward cards. This secondary payment system does not feature the same level of protection.
In cases where the waitstaff mistakenly swiped customers' cards on the devices lacking encryption, the payment data may have been stolen in plaintext by the attackers.
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.