ORLANDO—Two-million credit and debit card numbers have been for sale online following a data breach affecting Earl Enterprises, the parent company of Italian restaurant chain Buca di Beppo and other brands such as Earl of Sandwich and Planet Hollywood, Krebs on Security reported.
Krebs explained that the Orlando, Fla.-based hospitality firm Earl Enterprises confirmed a data breach involving malware installed on its point-of-sale systems allowed cyber thieves to steal card details from customers between May 23, 2018 and March 18, 2019.
Krebs said Earl Enterprises did not respond to requests for specifics about how many customers total may have been impacted by the 10-month breach.
Online Tool
The company’s statement directs concerned customers to an online tool that allows one to look up breached locations by city and state, Krebs explained.
“According to an analysis of that page, it appears the breach impacts virtually all 67 Buca di Beppo locations in the United States; a handful out of the total 31 Earl of Sandwich locations; and Planet Hollywood locations in Las Vegas, New York City and Orlando. Also impacted were Tequila Taqueria in Las Vegas; Chicken Guy! in Disney Springs, Fla.; and Mixology in Los Angeles,” Krebs said.