Chipotle Mexican Grill customers who ate at any of 33 restaurant locations in South Florida might have had their credit card information stolen as part of a nationwide hack, according to the company.
The restaurant chain has completed an investigation into a recent hack first reported on April 25 and found malware that was designed to access payment card information from cards used at Chipotle restaurants between March 24, 2017, and April 18, 2017, the company said in a recent statement. The malware was looking for track data from the magnetic strip on cards, which can include the card number, expiration date, verification code and sometimes the cardholder name, the company said.
Locations that may have been affected in South Florida include seven Chipotle restaurants in Miami, two in Hialeah, and one each in Doral, Pinecrest, Miami Lakes, Aventura, Cutler Bay and Homestead. Four locations in Fort Lauderdale were also identified as part of the investigation, in addition to several others in Broward County. A complete list of affected Chipotle locations can be found here.
The company recommends that customers who think they may have been affected review their card statements and report any unauthorized charges to the card company. Customers can also call Chipotle at 888-738-0534 Monday through Friday from 9 a.m. to 9 p.m., according to the statement.
“During the investigation we removed the malware, and we continue to work with cybersecurity firms to evaluate ways to enhance our security measures,” Chipotle said in a statement, adding that the company is working with card networks to notify banks so they can monitor cards that may have been impacted.