Purloined Vendor Credentials Lead To Jimmy John's Point Of Sale Fail

jjlogoNews has arrived of another point of sale (POS) security infiltration; one similar to those which compromised Target, Neiman Marcus, UPS, Michaels Stores, Walmart and SuperValu.
We found details of the malware attack in a recent post on the personal finance website PFHub.com, “Malware Installed on Jimmy John’s POS System: Data Breach,” which states that Jimmy John’s fell victim to a near-nationwide data breach where a large number of customers’ credit and debit card information was stolen by hackers.
As the only full-service point of sale provider — from software development to franchise incubator to ongoing support — part of Sintel’s commitment to our customers and business community is to share relevant ideas, information and industry news.
Here are the highlights of the PFHub.com post:
• The Champaign, Illinois-based sandwich restaurant chain says the security infiltration took place from June 16, 2014 to September 5, 2014 in more than 200 Jimmy John’s restaurants in 37 states.
• Jimmy John’s found that a cyber criminal obtained log-in credentials from the vendor of the company and accessed its point-of-sale systems in franchised and corporate locations remotely, and then installed malware on the machines.
• Stolen information, taken from cards swiped at the locations, included customer names, credit card numbers, expiration dates, verification pins and other personal data.
• “The security compromise has been contained, and customers can use their credit and debit cards securely at Jimmy John’s stores,” the company said in a statement, adding that it’s offering identity protection services for 12 months to patrons who were personally affected. “Jimmy John’s has taken steps to prevent this type of event from occurring in the future, including installing encrypted swipe machines, implementing system enhancements, and reviewing its policies and procedures for its third party vendors.”
Read the full PFHub.com post here.
For more insights into point of sale security, check out our related posts, “Backoff” Tracking Memory, Taking Credit, Criminals Hit Their Target, 40 Million Cards AffectedTarget Hack Claims Its Final Victim, EMV Technology Chips Away at Credit Card Fraud, and Target Acquisition.
Just as Sintel shares our vast point of sale experience and expertise with startup owners in order to help them make the best decisions from the very beginning, we are happy to share articles, advice and commentary about retail point of sale and security.
Whether you’re a first-time franchise hopeful, a small business owner or an established chain, it’s always smart to stay on top of the latest point of sale best security practices to achieve financial success.
If you are interested in learning more about Sintel’s point of sale systems and how our knowledge and support can impact your future success, call us for a complimentary phone consultation.
Sintel Systems is the only direct to end user full-service provider of tailored Point of Sale systems across retail, restaurant and service industries, including frozen yogurt shopspizzeriassushi restaurantscafés and retail stores.
As a single source for business solutions, our experienced, knowledgeable team negotiates the complex POS landscape for you to enable you to find the right POS system for your business and budget. Hardware – Software – Support
Questions or Comments: Contact us 855-POS-SALES www.SintelSystems.com