Chili’s Grill & Bar has reported a “data incident” of credit card information at some locations between March and April.
Brinker International, the owner off the restaurant chain, said Friday data was breached at undisclosed “certain” locations. The number of customers affected also were not disclosed.
The company said it learned Friday that it believes malware was used to collect credit and debit card numbers along with the names of cardholders from its payment systems.
“We deeply value our relationships with all of you and sincerely apologize to those who may have been affected,” the company said in a statement to its customers. “We take the security and privacy of your data seriously and are working diligently to address this issue.”
The company said third-party forensic experts are attempting to learn incident details.
“We are committed to sharing additional information on this ongoing investigation with our Guests as we learn more,” Chili’s said.
The company said there “no reason to believe” customers would be putting themselves at risk by using a credit or debit card at one of their locations in the future.
And Chili’s said it doesn’t collect Social Security numbers, full date of birth, or federal or state identification numbers from guests.
The chain recommended not closing bank and credit card accounts but to monitor statements for accuracy. Also it said a fraud alert statement can be submitted to all three national credit-reporting agencies and a “security freeze” placed on the credit account with then.
Dallas-based Brinker owns more than 1,600 locations as well as Maggiano’s Little Italy sites.