HUNTSVILLE, AL (WAFF) - Restaurant chain Dairy Queen confirmed Thursday evening that five Alabama stores are among the nearly 400 nationwide locations impacted by a data breach that took place between August and September.
Dairy Queen disclosed the list online Thursday. On that list are five Alabama locations:
- Orange Beach (Perdido Beach Blvd.; breached between Aug. 5 - Sept. 3)
- Gulf Shores (Gulf Shores Pkwy.; breached between Aug. 6 - Sept. 23)
- Decatur (Beltline Rd.; breached between Aug 5. - Aug. 30)
- Madison (Hwy. 72; breached between Aug. 6 - Aug. 29)
- Gardendale (Fieldstown Rd.; breached between Aug. 6 - Aug. 29)
The chain consists of more than 4,500 U.S. locations.
Dairy Queen CEO John Gainor said the payment system that was breached contained customer names, credit and debit card numbers and expiration dates. Dairy Queen is offering free identity-repair services to affected customers.
"We have no evidence that other customer personal information, such as Social Security numbers, PINs or email addresses, were compromised as a result of this malware infection," he said in a statement.
Gainor said an investigation revealed a third party vendor's compromised account credentials were used to access the payment system with malware, which in turn captured payment data.
Customers with concerns are asked to call 1-855-865-4456 for more information.