Card data compromise at Noodles & Company

Even when so many breaches follow a similar pattern, businesses may not know the best way to respond when they discover malware. While there's no 100 percent guarantee that fraud will never happen, credit card payment software that follows PCI standards will at least give operators the tools to be more vigilant.

A Colorado CBS affiliate recently reported on a breach at the Noodles & Company chain, which affected multiple states and left user cards at risk. The business started investigating the problem on May 17 and is working with an outside company to try and resolve the issue.

In a June 28 statement, company CEO Kevin Reddy described the steps the business took after the issue was found. "We contained the incident once the malware was identified and credit and debit cards used at the affected locations identified are no longer at risk from the malware involved in this incident," Reddy said. "Guests can safely use their credit and debit cards at Noodles & Company locations."

Some of the requirements within the PCI Security Standards can be guides for how to prepare for possible compromises. These include tight access controls, as the resource guide for the newest version of DSS, Version 3.2, stated.

The source said that these changes come from a series of sub-requirements and are part of a wider group of changes brought to the document. The guide said that Version 3.2 will represent merely best practices until February 1, 2018, at which point they will officially become effective requirements for payment software.

To use a payments processor that meets these standards and is also efficient, contact 911 Software today and find out why we have such a strong customer retention rate.

Scroll to Top