January 23, 2024 at 11:50AM
Jason’s Deli warns of a data breach affecting customers’ personal data in a credential stuffing attack. Hackers obtained member account credentials from other sources and used them to target the restaurant’s website. The breach exposes various customer information. The company cannot specify the number of affected accounts but is notifying potentially impacted customers and prompting them to reset passwords.
Key Takeaways from the Meeting Notes:
1. Jason’s Deli has experienced a data breach due to credential stuffing attacks, where hackers obtained credentials of member accounts and used them in an unauthorized attempt to access the restaurant’s website.
2. The data exposed in the attacks may include personal information such as full name, address, phone number, birthday, preferred Jason’s Deli location, house account number, Deli Dollar points, redeemable amounts and rewards, as well as truncated credit card and gift card numbers.
3. The total number of potentially impacted customers is reported to be 344,034 people.
4. Impacted customers will receive a prompt to reset their password and are advised to change passwords on all online platforms where the same credentials are used, and enable two-factor authentication where available.
5. Jason’s Deli intends to restore Deli Dollars reward points used without authorization from breached accounts to ensure customers do not experience losses.
These key takeaways summarize the main points and implications of the data breach and the steps being taken by Jason’s Deli to address it.