Noodles & Company data breach occurred January 31-June 2
Article continues below
Credit and debit cards used at the affected locations are no longer at risk.
On May 17, 2016, Noodles & Company began investigating unusual activity its credit card processor reported to the company.
Noodles & Company immediately began working with third-party forensic experts to investigate these reports and to identify any signs of compromise on its computer systems.
On June 2, 2016, Noodles & Company discovered suspicious activity on its computer systems that indicated a potential compromise of guests’ debit and credit card data for some debit and credit cards used at certain Noodles & Company locations.
Since that time, Noodles & Company has been working with third-party forensic investigators to determine how the security compromise occurred and what information was affected.
The company is also working to implement additional procedures to further secure guests’ debit and credit card information, including removing the malware at issue to contain this incident and to prevent any further unauthorized access to guests' debit or credit card information.
Credit and debit cards used at the affected locations are no longer at risk from the malware involved in this incident.
Guests can safely use their credit and debit cards at Noodles & Company locations. Noodles & Company is working with the United States Secret Service to investigate this incident. This notice has not been delayed by law enforcement.
Through the ongoing third-party forensic investigations, Noodles & Company confirmed that malware may have stolen credit or debit card data from some credit and debit cards used at certain Noodles & Company locations between January 31, 2016 and June 2, 2016.
The information at risk as a result of this event includes the cardholder’s name, card number, expiration date, and CVV. A list of impacted Noodles & Company locations is available at www.noodles.com/security. ■