Sun. Feb 23rd, 2020

TerabitWeb Blog

Fascinating Technology and Security Information

Rutter’s convenience stores suffers POS data breach

2 min read

Original Post from SC Magazine
Author: Doug Olenick

The Pennsylvania and West Virginia convenience store chain Rutter’s was subjected to a POS skimming attack for at least seven months affecting card readers inside some stores and at gas pumps.

Rutter’s was
informed of the problem by a third party and on January 14, 2020 a company
investigation confirmed a data breach did take place. The general time frame
the malware was present ranges from October 1, 2018 through May 29, 2019. One
location was hit earlier, starting August 30, and nine others were infected
starting on September 20. Rutter’s owns and operates 72 locations.

The company
believes the POS systems at some fuel pumps and inside some of convenience
stores were through malware installed on the corporate payment processing
systems. The malware has been removed.

“The malware
searched for track data (which sometimes has the cardholder name in addition to
card number, expiration date, and internal verification code) read from a
payment card as it was being routed through the payment processing systems,”
the company reported.

Rutter’s did
note that chip (EMV) cards used in chip readers located inside stores only gave
up the card number and expiration date and no additional information. Also, POS
systems in Rutter’s car washes, ATM’s, and lottery machines in were not
involved.

The company
is notifying by mail customers who were known to have used their cards at the
affected locations and for whom the chain has an address.

The post Rutter’s convenience stores suffers POS data breach appeared first on SC Media.


Go to Source
Author: Doug Olenick

Leave a Reply

Copyright © All rights reserved. | Newsphere by AF themes.