According to a report from Earl Enterprises, three of their Disney Springs Locations were affected by a recent credit card breach. Potentially affected restaurants include Earl of Sandwich, Planet Hollywood, and Chicken Guy!.
As a result, the restaurant group has launched an internal investigation with the help of two leading cybersecurity firms. Additionally, they have been in contact with federal law enforcement officials and a cooperating.
It appears that unauthorized individuals installed malicious software on some point-of-sale systems some of Earl Enterprises’ restaurants. The malicious software was designed to capture payment card data, which potentially includes credit and debit card numbers, expiration dates and, in some cases, cardholder names. Online orders paid for online through third-party applications or platforms, such as Disney’s MagicBands, were not affected by this incident.
Earl Enterprises is urging individuals who have eaten at one of the affected locations between May 23, 2018, and March 18, 2019, to carefully review their credit card statements if they paid using a credit card.
It does not appear that individuals who made purchases through MagicBands need to take any additional action at this time; we will continue to provide updates as the investigation continues.
More information about the breach can be found here.