PDQ is warning customers about a cyber attack on its computer systems.
Hackers were able to access or acquire personal information from the chain's customers who paid with credit cards.
An unauthorized person (hacker) exploited part of their computer-related system and accessed and or acquired personal information from some of our customers.
PDQ's online statement said the information that was improperly accessed included customers' names, credit card numbers, expiration dates, and card verification codes.
PDQ said they reported the attack to law enforcement agencies and hired a cyber-security firm to conduct a review of how the attack happened.
Source: https://www.wral.com/restaurant-chain-pdq-says-customer-s-credit-card-info-was-hacked/17649050/
TPRM report: https://scoringcyber.rankiteo.com/company/pdq-restaurants
"id": "pdq202217822",
"linkid": "pdq-restaurants",
"type": "Data Leak",
"date": "06/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Restaurant',
'name': 'PDQ',
'type': 'Company'}],
'attack_vector': 'Exploitation of computer-related system',
'customer_advisories': 'Warning to customers',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ["Customers' names",
'Credit card numbers',
'Expiration dates',
'Card verification codes']},
'description': "Hackers accessed or acquired personal information from PDQ's "
'customers who paid with credit cards.',
'impact': {'data_compromised': ["Customers' names",
'Credit card numbers',
'Expiration dates',
'Card verification codes'],
'payment_information_risk': True},
'response': {'communication_strategy': 'Online statement',
'law_enforcement_notified': True,
'third_party_assistance': 'Hired a cyber-security firm'},
'threat_actor': 'Unauthorized person (hacker)',
'title': 'PDQ Credit Card Breach',
'type': 'Data Breach'}