The parent company of restaurants such as Planet Hollywood, Buca di Beppo and Mixology has confirmed that it experienced a security breach after security researchers found more than 2 million stolen credit card numbers sold online.
KrebsOnSecurity says it contacted the company in February after it discovered "strong evidence" that customers' credit and debit card numbers were being sold online. The hackers used "malware installed in their point of sale systems" to steal 2.15 million credit and debit card numbers, expiration dates and some names of restaurant card holders in 40 states.
Earl Enterprises says that the infraction occurred between May 23, 2018 and March 18, 2019, and that "the incident has already been contained." The gap affected the individual restaurant locations of Buca di Beppo, Earl of Sandwich, Planet Hollywood, Chicken Guy, Mixology, and Taqueria Tequila. Since then, the company has launched a website for customers to verify if the location they visited was one that was affected. It also says that online orders were not affected by the breach.
The company recommends that customers examine their statements for suspicious activity and notify their issuer if they find fraudulent transactions.