Jimmy John’s restaurant chain said the credit and debit card data of customers who visited 216 of its locations, including five in metro Atlanta and a sixth one in Columbus, may have been exposed in recent months during a suspected data breach.
The chain said “an intruder stole log-in credentials from Jimmy John’s point-of-sale vendor and used these stolen credentials to remotely access the point-of-sale systems at some corporate and franchised locations between June 16, 2014 and September 5, 2014.”
The company did not identify the vendor. Efforts were being made to reach Champaign, Ill-based Jimmy John’s for comment.
Jimmy John’s said the breach involved cards that were swiped at restaurants. Customers whose card numbers were entered manually at a restaurant or online did not appear to be affected by the breach, the company said.
The company said it is offering identity protection services to customers who may have been affected by the breach. Jimmy Johns is also urging customers to monitor their credit and debit card accounts and notify their financial institution if suspicious activity is noticed.
The following are the Georgia locations where customers may have swiped their cards and their data may have been exposed. The list includes the period the compromise occurred:
• STORE 0444 Atlanta, 365 14th St. NW - July 1 to Aug. 2.
• STORE 0986 Atlanta, 925A Peachtree St NE - July 1 to Aug. 1.
• STORE 1603 Alpharetta, 4180 Old Milton Parkway Ste. 1B - July 1 to Aug. 1.
• STORE 1860 Norcross, 6135 Peachtree Parkway Ste. 301 - July 1 to Aug. 2.
• STORE 2185 Newnan, 51 Newnan Crossing Bypass - June 16 to Aug. 13.
• STORE 1213 Columbus, 3217 Macon Road - June 26 to Aug. 8.
About the Author