Kansas City metro area Chipotle restaurants are among many of the chain’s stores that were affected by a national credit card security incident.
The company recently posted information on its website regarding an incident that was first reported April 25. It says an investigation identified malware designed to access payment and credit card data from the the point-of-sale devices at many of the Chipotle restaurants. The period of time affected was between March 24 and April 18. The malware searched for track data, which sometimes has the cardholder’s name in addition to the card number, expiration date and verification code, read from the magnetic stripe of the card.
The company said there was no indication that other customer information was affected.
The website offers a link that lists addresses of the affected Chipotle restaurant locations, which include many of its restaurants on both sides of the state line in the Kansas City metro area, including Kansas City, Independence, Lee’s Summit, Overland Park and Olathe.
The company said that during its investigation it removed the malware and is continuing to work with security firms to improve its security measures. It advised customers to review their payment card statements and report any unauthorized charges to the card issuer.
Chipotle customers who have questions can call 888-738-0534 from 9 a.m. to 9 p.m. eastern time Monday through Friday and from 9 a.m. to 5 p.m. on Saturday or Sunday.