Have you stopped at any Wawa convenience store and used your payment card to buy gas or snacks in the last nine months?
If yes, your credit and debit card details may have been stolen by cybercriminals.
Wawa, the Philadelphia-based gas and convenience store chain, disclosed a data breach incident that may have exposed payment card information of thousands of customers who used their cards at about any of its 850 stores since March 2019.
What happened? According to a press release published on the company’s website, on 4th March, attackers managed to install malware on its point-of-sale servers used to process customers’ payments.
By the time it was discovered by the Wawa information security team on 10th December, the malware had already infected in-store payment processing systems at “potentially all Wawa locations.”
That means attackers were potentially stealing Wawa customers’ payment card information until the malware was entirely removed by its servers on 12th December 2019.
The company also said the malware was present on most locations’ point-of-sale systems by approximately 22nd April 2019, although some Wawa locations may not have been affected at all.
What has been…