Credit card information compromised at Chili’s Restaurants

Chili's

On May 11, Chili’s parent company (Brinker International) learned that some guests’ payment card information was compromised at some Chili’s® Grill & Bar restaurants as the results of a data incident. Currently it’s believed the data incident was limited to between March-April 2018; however, the scope of the incident will continued to be assessed.

Brinker is currently working with third-party forensic experts and its investigation into this incident is ongoing. The priority is and will continue to be doing what is right for guests. Brinker is offering free credit monitoring and fraud resolution services for those who many have been affected by this incident.

 

OFFICIAL STATEMENT: Updated May 18, 2018

Dear Valued Guests,

This notice is to make you aware that some Chili’s restaurants have been impacted by a data incident, which may have resulted in unauthorized access or acquisition of your payment card data, and to provide you information on steps you can take to protect yourself and minimize the possibility of misuse of your information.

We sincerely apologize to those who may have been affected and assure you we are working diligently to resolve this incident. We are offering free credit monitoring and fraud resolution services for those who may have been affected by this incident.

What Happened? On May 11, 2018, we learned that some of our Guests’ payment card information was compromised at certain Chili’s restaurants as the result of a data incident. Currently, we believe the data incident was limited to between March – April 2018; however, we continue to assess the scope of the incident. We deeply value our relationships with our Guests and sincerely apologize to those who may have been affected.

We immediately activated our response plan upon learning of this incident. We are working with third-party forensic experts to conduct an investigation to determine the details of what happened. Below is information on how you can protect yourself and your information.

We are working diligently to address this issue and our priority will continue to be doing what is right for our Guests. We are committed to sharing additional information on this ongoing investigation with our Guests as we learn more.

What Information Was Involved? The investigation into this incident is ongoing; however, based on the details currently uncovered, we believe that malware was used to gather payment card information including credit or debit card numbers and cardholder names, and potentially expiration dates and CVV codes from our payment-related systems for in-restaurant purchases at certain Chili’s restaurants. Currently, we believe the data incident was limited to between March – April 2018; however, we continue to assess the scope of the incident.

Chili’s does not collect social security numbers, full date of birth, or federal or state identification numbers from Guests. Therefore, this personal information was not compromised.

What Are We Doing? We are working with third-party forensic experts to conduct an extensive investigation to confirm the nature and scope of this incident. Law enforcement has been notified of this incident and we will continue to fully cooperate. We are working with ID Experts® to provide Guests who may have been impacted with free fraud resolution and credit monitoring services.

The company is committed to sharing the latest information as it becomes available online here: http://brinker.mediaroom.com/ChilisDataIncident

One thought on “Credit card information compromised at Chili’s Restaurants

  1. Unless and until these “data breaches” cause a loss of cold hard cash from the vendor this type of stuff will continue. Now, because of a vendor’s financial negligence, the consumer is placed in a position of having to take valuable time and effort to protect himself. The bottom line is that my time is worth money, and a “sincere apology and “we are investigating” mantra is not only worthless but total BS.

Comments are closed.