Huddle House issued a press release disclosing that some of their franchisee-operated restaurants had experienced a payment card breach.
Criminals compromised a third-party point of sale (POS) vendor’s data system and utilized the vendor’s assistance tools to gain remote access and the ability to deploy malware to some Huddle House corporate and franchisee POS systems.
Huddle House did not reveal the name of the vendor nor the type of malware.
They did disclose, however, that they only became aware of the incident.
The chain did not know how many locations may have been impacted or how many customers may have had their card data compromised
They also advised that if their customers had used a payment card at any Huddle House locations on or after August 1, 2017, the card information might be at risk.
TPRM report: https://scoringcyber.rankiteo.com/company/huddlehouse
"id": "hud101022223",
"linkid": "huddlehouse",
"type": "Breach",
"date": "02/2019",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Food and Beverage',
'location': 'Multiple Locations',
'name': 'Huddle House',
'size': 'Unknown',
'type': 'Restaurant Chain'}],
'attack_vector': 'Malware',
'customer_advisories': 'Include customers who used payment cards at any '
'Huddle House locations on or after August 1, 2017',
'data_breach': {'data_encryption': 'Unknown',
'data_exfiltration': 'Unknown',
'file_types_exposed': 'Unknown',
'number_of_records_exposed': 'Unknown',
'personally_identifiable_information': 'Unknown',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Payment Card Data'},
'date_detected': 'Unknown',
'date_publicly_disclosed': 'Unknown',
'date_resolved': 'Unknown',
'description': 'Huddle House experienced a payment card breach affecting some '
'franchisee-operated restaurants.',
'impact': {'brand_reputation_impact': 'Unknown',
'conversion_rate_impact': 'Unknown',
'customer_complaints': 'Unknown',
'data_compromised': ['Payment Card Data'],
'downtime': 'Unknown',
'financial_loss': 'Unknown',
'identity_theft_risk': 'Unknown',
'legal_liabilities': 'Unknown',
'operational_impact': 'Unknown',
'payment_information_risk': 'High',
'revenue_loss': 'Unknown',
'systems_affected': ['POS Systems']},
'initial_access_broker': {'backdoors_established': 'Unknown',
'data_sold_on_dark_web': 'Unknown',
'entry_point': 'Third-Party POS Vendor',
'high_value_targets': 'Unknown',
'reconnaissance_period': 'Unknown'},
'investigation_status': 'Unknown',
'lessons_learned': 'Unknown',
'motivation': 'Data Theft',
'post_incident_analysis': {'corrective_actions': 'Unknown',
'root_causes': 'Compromised Third-Party POS '
'Vendor'},
'ransomware': {'data_encryption': 'Unknown',
'data_exfiltration': 'Unknown',
'ransom_demanded': 'Unknown',
'ransom_paid': 'Unknown',
'ransomware_strain': 'Unknown'},
'recommendations': 'Unknown',
'references': [{'date_accessed': 'Unknown',
'source': 'Huddle House Press Release',
'url': 'Unknown'}],
'regulatory_compliance': {'fines_imposed': 'Unknown',
'legal_actions': 'Unknown',
'regulations_violated': 'Unknown',
'regulatory_notifications': 'Unknown'},
'response': {'adaptive_behavioral_waf': 'Unknown',
'communication_strategy': 'Press Release',
'containment_measures': 'Unknown',
'enhanced_monitoring': 'Unknown',
'incident_response_plan_activated': 'Unknown',
'law_enforcement_notified': 'Unknown',
'network_segmentation': 'Unknown',
'on_demand_scrubbing_services': 'Unknown',
'recovery_measures': 'Unknown',
'remediation_measures': 'Unknown',
'third_party_assistance': 'Unknown'},
'stakeholder_advisories': 'Unknown',
'threat_actor': 'Unknown Criminals',
'title': 'Huddle House Payment Card Breach',
'type': 'Payment Card Breach',
'vulnerability_exploited': 'Remote Access through Third-Party POS Vendor'}