Credit Card Data leak at Yak & Yeti Restaurant in Disney’s Animal Kingdom

Please note: some posts may contain affiliate links which means our team could earn money if you purchase products from our site

Yak

Breaking News out of Disney’s Animal Kingdom.

Restaurant Group Landry Inc owners of Yak & Yeti, T-Rex and Rain-forest Cafe in Walt Disney World has reported a data breach in several of their restaurants.

Guests who dined at the Yak & Yeti Restaurant in Disney’s Animal Kingdom between May 8th and December 3rd, 2015 are advised to check their credit card and bank statements for unauthorized activity. Reports indicate guests who used their Magic Bands have not been affected.

The Landry Group sent out this release:

Findings from the investigation show that criminal attackers were able to install a program on payment card processing devices at certain of our restaurants, food and beverage outlets, spas, entertainment destinations, and managed properties. The program was designed to search for data from the magnetic stripe of payment cards that had been swiped (cardholder name, card number, expiration date and internal verification code) as the data was being routed through affected systems. Locations were affected at different times during one or both of the following periods: from May 4, 2014 through March 15, 2015 and from May 5, 2015 through December 3, 2015. In addition, the at-risk timeframe for a small percentage of locations includes the period from March 16, 2015 through May 4, 2015.

Enhanced security measures, including end-to-end encryption, have been implemented to prevent a similar issue from occurring in the future, and we continue to support law enforcement’s investigation. We are also working closely with the payment card networks to identify potentially affected cards so that the card issuers can be made aware and initiate heightened monitoring of those accounts. For those customers we can identify as having used their card at an affected location during that location’s at-risk window and for whom we have a mailing address or e-mail address, we will be mailing them a letter or sending them an e-mail.

If you used a payment card at an affected location during its at-risk window, we recommend that you remain vigilant to the possibility of fraud by reviewing your payment card statements for any unauthorized activity. You should immediately report any unauthorized charges to your card issuer because payment card rules generally provide that cardholders are not responsible for unauthorized charges reported in a timely manner. The phone number to call is usually on the back of your payment card. Please see the section that follows this notice for additional steps you may take to protect your information.

For a list of only the affected locations and respective at-risk time-frames, click here.