The California Office of the Attorney General reported that Wawa, Inc. experienced a data breach involving malware on payment processing servers, discovered on December 10, 2019, and contained by December 12, 2019. The breach potentially affected payment card information of individuals using cards at Wawa locations from March 4, 2019, to December 12, 2019, though the exact number of affected individuals is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-185312
TPRM report: https://www.rankiteo.com/company/wawa-inc-
"id": "waw739072825",
"linkid": "wawa-inc-",
"type": "Cyber Attack",
"date": "3/2019",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Retail',
'location': 'Multiple locations',
'name': 'Wawa, Inc.',
'type': 'Company'}],
'attack_vector': 'Malware',
'data_breach': {'number_of_records_exposed': 'Unknown',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Payment card information'},
'date_detected': '2019-12-10',
'date_resolved': '2019-12-12',
'description': 'The California Office of the Attorney General reported that '
'Wawa, Inc. experienced a data breach involving malware on '
'payment processing servers, discovered on December 10, 2019, '
'and contained by December 12, 2019. The breach potentially '
'affected payment card information of individuals using cards '
'at Wawa locations from March 4, 2019, to December 12, 2019, '
'though the exact number of affected individuals is unknown.',
'impact': {'data_compromised': 'Payment card information',
'payment_information_risk': 'High',
'systems_affected': 'Payment processing servers'},
'references': [{'source': 'California Office of the Attorney General'}],
'response': {'containment_measures': 'Contained by December 12, 2019'},
'title': 'Wawa Data Breach',
'type': 'Data Breach'}