Wawa experiences malicious software data intrusion

Wawa, a popular chain of convenience stores and fuel stations, announced the discovery of malware on its payment processing servers on Dec 10, 2022. The malware compromised customer payment card information used at potentially all Wawa locations.

The malware affected debit and credit card numbers, expiration dates, and cardholder names. However, it's important to note that debit card PINs, credit card CVV2 numbers, other PINs, and driver's license information were not affected.

This incident comes at a time when breaches of U.S. retailers have been on the rise. According to a 2018 report, U.S. retailers led the world in security breaches. In fact, breaches of U.S. retailers more than doubled between 2017 and 2018.

Retailers are still working to strengthen their efforts against cyber threats to their point-of-sale systems. Wawa has taken immediate action and will provide identity theft protection and credit monitoring services to customers affected by the data breach.

A dedicated call center has been established for inquiries related to the incident. For more information, customers are encouraged to contact Wawa directly.

Interestingly, consumer data is becoming more readily available for retailers. This data is being used not only to secure transactions but also to personalize the shopper experience. Forty percent of retailers surveyed by VMWare Carbon Black plan to increase their security budgets by at least 10% in 2020, and more than half plan to increase cybersecurity staff.

This incident is not isolated. In summer 2018, Macys.com and Bloomingdales.com (owned by Macy's) encountered another breach. Macy's had a data breach in November 2022, which was determined to be a skimmer from Magecart.

It's crucial for customers to stay vigilant and monitor their accounts for any suspicious activity. Customers will not be responsible for any fraudulent charges on their payment cards related to this incident.

In light of these incidents, it's clear that retailers have a significant challenge in protecting customer data. However, with increased investment in security and staff, and a focus on strengthening their systems, we can hope for a more secure future for online transactions.