Breach Brief – Wawa

Published On December 21, 2019 | By Tom Huskerson | Breach Briefs

Wawa gas station and convenience stores chain has reported a major data breach. Just how major?

According to reports the breach may have compromised ALL payment systems at ALL 850 Wawa location and EVERY customer who used a card at those stores between March and December of this year.

According to some experts this was no simple hack or malware but a highly sophisticated attack that was capable of bypassing the micro-chip payment card technology used to encode payment card transactions with a one-time pin and capable of evading detection for several months.

To date the investigation is limited to payment card information, including debit and credit card numbers, expiration dates and cardholder names. According to Wawa the investigation does not include PINs or CVV2 numbers. ATMs in Wawa stores are not affected by the data breach.

Wawa’s payment processing servers were found to be infected by malware on Dec. 10th and the infection was contained on the 12th. Wawa’s forensic investigation discovered that the malware began running at different points in time after March 4th. Wawa said it took immediate steps after discovering this malware and believes it no longer poses a risk to customers.

Wawa is offering identity protection and credit monitoring services at no charge to customers. Information about how to enroll can be found on the Wawa website.

Customers with questions can contact the Wawa call center at 1-844-386-9559, Monday through Friday, between 9 a.m. and 9 p.m. Eastern Time or Saturday and Sunday between 11 a.m. and 8 p.m., excluding holidays.

Wawa customers are advised to keep a close watch on their credit/debit cards for any fraudulent activity. If found report it immediately.

Like this Article? Share it!

About The Author

Tom Huskerson Bio Born in Richmond Virginia Tom Huskerson is a military veteran who settled in California after his discharge. Tom attended Santa Barbara City College where he began his writing career as a campus reporter. He worked as an intern news reporter for the Santa Barbara News-Press writing feature stories before moving on to San Francisco. At San Francisco State University Tom studied broadcast communications and began to focus on the Internet. He completed his graduate thesis on Internet advertising. Tom was the first student to ever focus on the Internet as a graduate student at San Francisco State University. After graduation he went to work for Zona Research in California’s Silicone Valley. As a research associate Tom supported senior analyst writing on the latest developments in the Internet industry. During the dot com boom Tom worked for several web businesses as a market researcher and analyst. As a writer and researcher Tom has authored various technical works including a training program for Charles Schwab security. Other projects included professional presentations on workplace violence and hiring security contractors. Tom has also written both fiction and non-fiction works and blogging for a travel website. He has published two books of short stories and completed two novels. Tom is the owner of Scribe of Life Literature and Tom is not the chief editor for the OnTechStreet. com. A news and information blog that focuses on tech news for African-Americans. The blog is the result of his desire to inform the African American community of the dangers and benefits of the cyber age. In his blog Tom reports on information security, new and analysis, scams and hoaxes, legal happenings and various topics that arise from the age of information. Tom believes that technology is a necessary tool for black people and they should know what is happening. Tom writes believing that techno speak is for the professional and that valuable information can be communicated using plain language. As a result he has embraced the motto, Less Tech, More Knowledge.

Comments are closed.