Dairy Queen announced Thursday that a security breach struck hundreds of its stores around the country this past summer – including some in the Tri-State Area.
The credit and debit card systems of 395 Dairy Queen locations were infected with the infamous Backoff malware that has targeted retailers around the country, Dairy Queen said in a news release.
The affected Dairy Queen stores included the Dairy Queen Grill and Chill Restaurant at the Staten Island Ferry Terminal in St. George, Staten Island, as well as a Dairy Queen Brazier in Plainfield, New Jersey, and a Dairy Queen/Orange Julius store in Park Ridge, New Jersey.
Also affected were the Dairy Queen Grill and Chill Restaurant at 11 James P. Kelly Way in Middletown, Orange County, and a Dairy Queen Brazier upstate in Niagara Falls. Three Connecticut locations were also affected – in Waterbury, South Windsor and Enfield.
Dairy Queen emphasized that the security breach only affected 395 out of the 4,500 U.S. locations.
The time periods that the stores were affected varied by locations. All of the Tri-State Area locations were affected starting between Aug. 1 and Aug. 6, and ending between Aug. 29 and Sept. 1.
The affected systems contained credit and debit card names, numbers and expiration dates, Dairy Queen said. There was no evidence that other personal information such as Social Security numbers, PINs or e-mail addresses were affected.
Dairy Queen said based on its investigation, the company is confident that the breach has ended.
The Dairy Queen breach is the latest in a string of high-profile security breaches going back nearly a year.
Just last week, JPMorgan Chase & Co. said a data breach affected 76 million households and 7 million small businesses that use its banking services.
Last month, Home Depot confirmed that 56 million credit and debit cards were likely affected by a data breach the breach between April and September at stores in the U.S. and Canada. The breach amounted to the second largest for a retailer on record.
In December of last year, Target Corp. disclosed that about 40 million credit and debit cards may have been affected by the data breach that happened between Nov. 27 and Dec. 15, just as the holiday shopping season was shifting into high gear.
The UPS Store, Michaels, SuperValu, P.F. Chang’s restaurants, and Neiman Marcus have also been affected by data breaches this year.