Skip to main content

If you ate at Wendy's in late 2015, you should check your credit card statement

wendys malware infection 1000 locations credit card breach sign logo
Mike Mozart/Flickr
Did you stop at Wendy’s for a Baconator and a Frosty some time in late 2015? Malware that infected the point-of-sale machines in more than 1,000 Wendy’s locations means you might have gotten a side of identity theft with your order. The restaurant chain believes attackers specifically targeted customer credit card information.

Wendy’s says that the malware has been removed from infected computers, and has provided a public list of affected locations that concerned customers can check. If a location you visited is listed, it’s probably a good idea to review your credit card history, Engadget is reporting.

How did the infection spread to point-of-sale machines in the first place? Hacked remote access credentials, Wendy’s is saying.

“We believe that both criminal cyberattacks resulted from service providers’ remote access credentials being compromised, allowing access — and the ability to deploy malware– to some franchisees’ point-of-sale systems,” said Wendy’s President and CEO Todd Penegor in a statement about the breach.

The restaurant chain is offering victims of the breach a year of fraud consultation over the phone. If you think you’ve been affected, call 866-779-0485 between 8 a.m. and 5:30 p.m. CST on a non-holiday weekday to find out what you need to do next.

It’s also a good idea to check your credit score, and look through your credit card bills for any unfamilar purchases.

“We will continue to work diligently with our investigative team to apply what we have learned from these incidents and further strengthen our data security measures,” said Penegor.

This is another reminder that, in a connected world, you can be affected by a malware outbrake regardless of whether you shop online or not. This is one of the bigger breaches since Target’s infamous problems back in 2014, when the credit card information of up to 40 million people was leaked.

Editors' Recommendations

Justin Pot
Former Digital Trends Contributor
Justin's always had a passion for trying out new software, asking questions, and explaining things – tech journalism is the…
How to check your fps (frames per second) in games on PC
Colt shoots an enemy off their feet in Deathloop.

PC gaming is all about pushing frames per second (fps) as high as possible. With a high refresh rate monitor, a high fps makes your games look smoother and feel more responsive, helping you be more competitive in esports games. But in order to know if your frame rate is high enough, you need to know how high it actually is. You need to know how to check your fps.

Read more
Stop spending so much money on your laptop
Asus Zenbook 14X OLED front angled view showing display and keyboard.

If you're in the market for a new laptop today, you'll encounter a dizzying array of options ranging in price from a few hundred dollars up to the low five figures. You'll find different build qualities, specifications, display types, and much more, all of which combine to make choosing the best laptop for you a challenge.

It's tempting to get mesmerized by the latest and greatest machines and end up spending a lot more than you need to or should. The thing is, there are legitimate reasons to spend less on a laptop in 2023, and trust me -- it hasn't always been this way.
You probably don't need more power
Asus ZenBook 14X OLED Mark Coppock / Digital Trends

Read more
Malicious bots make up 73% of internet traffic, report says
italy agcom pirate anti piracy download bay software keyboard skull music cyber crime

In a concerning revelation by the fraud control platform Arkose Labs, about 73% of internet traffic to websites and apps that was analyzed between January and September 2023 has been attributed to bots engaging in malicious activities. This revelation sparks discussions about the significant drain on valuable resources caused by such nefarious actions.

The third quarter of 2023 witnessed the dominance of five primary categories of bad bot activities, including account takeover, scraping, fake account creation, account management, and in-product abuse. This is similar to the second quarter, with the notable exception of in-product abuse stepping in for card testing.

Read more