On September 24th, Jimmy John’s, a famous Sandwich Shop franchise, reported that it “learned of a possible security incident involving credit and debit card data at some of Jimmy John’s stores and franchised locations.”
Approximately 216 Jimmy John’s stores across the nation appear to be affected by the breach, duration estimating from June 16th, 2014 to September 5th, 2014. Signature System, Payment Processor working with Jimmy John’s, says they are unable to identify which specific cards were affected by the breach.Jimmy John’s installed new encrypted swipe machines and enhanced their systems to prevent further data breaches.
Compromised Details:
Jimmy John’s announced that the information stolen was from the cards that were swiped, and the ones that were entered manually in the store or online is safe. Compromised data from the swiped card may include following:
- Credit/debit card number
- Card holder’s name
- Verification code
- Card’s expiration date
Jimmy John’s claim that any information entered online such as customer e-mail, home address, and password has not been breached.
Identity Theft Risk:
Since critical credit and debit card information has been stolen, it is strongly recommended for customers who have visited Jimmy John’s past months to monitor their credit and debit uses.
Jimmy John’s is working with AllClear ID to provide identity protection services to impacted customers. Customers can visit Jimmy John’s website or call (855) 398-6442.
List of States Breached:
| Alabama | Arkansas | Arizona |
| California | Connecticut | Delaware |
| Florida | Georgia | Iowa |
| Idaho | Illinois | Indiana |
| Kansas | Kentucky | Michigan |
| Minnesota | Missouri | Mississippi |
| Montana | North Carolina | North Dakota |
| Nebraska | New Jersey | New Mexico |
| Nevada | New York | Ohio |
| Oklahoma | Oregon | Pennsylvania |
| South Carolina | South Dakota | Tennessee |
| Texas | Utah | Virginia |
| Washington | Wisconsin | West Virginia |
| Wyoming |
