And the hacks just keep on coming.
Whole Foods, one of the country’s most popular grocery chains, is facing a credit card security breach involving its taprooms, restaurants and other in-store venues.
The company released a statement Thursday saying hackers had targeted “point of sale systems” — which are the machines that customers use to swipe or insert their cards — in the attempt to steal data.
“Whole Foods Market recently received information regarding unauthorized access of payment card information used at certain venues such as taprooms and full table-service restaurants located within some stores,” the statement said, explaining that those who shopped for groceries were likely not affected.
“When Whole Foods Market learned of this, the company launched an investigation, obtained the help of a leading cyber security forensics firm, contacted law enforcement, and is taking appropriate measures to address the issue.”
Thursday’s announcement makes Whole Foods, which was recently acquired by Amazon, the latest big name to suffer a cybersecurity breach this year — following hacks at Equifax, the SEC, Wendy’s and Chipotle, among others.
Just this week, the drive-in restaurant chain Sonic revealed that it, too, had been targeted by hackers in the very same way that Whole Foods was hit.
The cybersecurity blog, KrebsOnSecurity, reported potential breaches at several Sonic restaurants via point of sale systems, with millions of credit and debit card numbers possibly being stolen.
Wendy’s and Chipotle were both hacked in similar ways, as well, according to experts.
“The company’s investigation is ongoing and it will provide additional updates as it learns more,” Whole Foods said in its statement. “While most Whole Foods Market stores do not have these taprooms and restaurants, Whole Foods Market encourages its customers to closely monitor their payment card statements and report any unauthorized charges to the issuing bank….