DUBLIN, Ohio—Wendy’s is investigating possible fraudulent charges to customers' credit and debit cards.
The fast-food restaurant began an investigation after being alerted this month by the payments industry to possible fraudulent charges being made elsewhere after payment cards were legitimately used at some restaurants, Wendy’s stated.
Reports indicate that Wendy's is working with cybersecurity experts, payment industry contacts and law enforcement to look into the possible fraud. It's unclear how many cards or restaurant locations may have been affected.
"Until this investigation is completed, it is difficult to determine with certainty the nature or scope of any potential incident," Wendy’s spokesperson Bob Bertini told USA Today.
The possible security breach was first reported by Krebs on Security.
NAFCU responded by sending a letter to House and Senate leaders. In the letter NAFCU Vice President of Legislative Affairs Brad Thaler urged Congress again to support national data security standards for retailers and others who collect and store consumers’ personal and financial information.
“Americans’ sensitive financial and personally identifiable information will only be as safe as the weakest link in the security chain,” Thaler wrote.
Thaler pointed out that financial institutions are already subject to data security standards under the Gramm-Leach-Bliley Act, but merchants are not, and urged support for the Data Security Act of 2015 (HR 2205/S.961).