Cybersecurity Breach Targets Landry’s Restaurant Chain
Landry’s, a prominent restaurant conglomerate in the United States, has recently reported a significant malware attack affecting its point of sale (POS) systems, resulting in the potential theft of customer payment card information. The chain operates over 600 establishments, encompassing various dining venues, hotels, and casinos under well-known brands, including Morton’s The Steakhouse, Rainforest Cafe, and Chart House.
The breach notification, released earlier this week, disclosed that the malware was specifically engineered to seek out and extract sensitive credit card data. This included not only card numbers and expiration dates but also verification codes and, in some cases, cardholder names. Fortunately, the company utilized end-to-end encryption technology across its POS systems, which thwarted attempts to capture payment card data during transactions made at their restaurants.
However, vulnerabilities were identified in the order-entry systems utilized by waitstaff, where certain circumstances allowed attackers to capture customer payment data. This occurred when payment cards were inadvertently swiped on devices not intended for that purpose, enabling the malware to glean track data. Such malware exploits technique could potentially correlate with tactics outlined in the MITRE ATT&CK framework, including initial access through malware deployment and the exploitation of user misconfigurations.
The compromise reportedly occurred between March 13, 2019, and October 17, 2019, with indications that the malware may have been in place as early as January 18, 2019. During the ensuing investigation, Landry’s successfully removed the malware from its systems and instituted advanced security measures, along with enhanced training for its staff to mitigate future risks.
At present, Landry’s has not quantified the number of customers who may have been affected by this incident, although its breach notification emphasizes the importance of vigilance. Customers who transacted at any Landry’s location over the past year are encouraged to closely monitor their payment card statements for abnormal activity and report any suspicious findings to their banks as well as local law enforcement agencies.
This event underscores the vital need for businesses to implement robust cybersecurity measures, especially when dealing with sensitive customer information. As the threat landscape continues to evolve, organizations in the hospitality sector must remain proactive in safeguarding against potential cyber threats, understanding that even indirect vulnerabilities can lead to breaches of sensitive data.
In conclusion, this incident serves as a reminder of the importance of ongoing vigilance and risk management practices in the face of increasing cyber threats. Business owners are urged to take necessary precautions to protect their systems and customer data, reflecting a commitment to maintaining trust in the digital landscape.
