Statement of Jason’s Deli Regarding Customer Financial Data

Jason’s Deli (www.jasonsdeli.com) is a family owned business known for high-quality food and catering services for over 40 years. It is headquartered in Texas and operates or franchises 266 restaurants in 28 states, with a reputation for award-winning quality and a strong relationship with our customers.

On Friday, Dec. 22, 2017, our company was notified by payment processors – the organizations that manage the electronic connections between Jason’s Deli locations and payment card issuers – that MasterCard security personnel had informed it that a large quantity of payment card information had appeared for sale on the “dark web,” and that an analysis of the data indicated that at least a portion of the data may have come from various Jason’s Deli locations.

Jason’s Deli’s management immediately activated our response plan, including engagement of a leading threat response team, involvement of other forensic experts, and cooperation with law enforcement. Among the questions that investigators are working to determine is whether in fact a breach took place, and if so, to determine its scope, the method employed, and whether there is any continuing breach or vulnerability.

The investigation is in its early stages and, as is typical in such situations, we expect it will take some time to determine exactly what happened. Jason’s Deli will provide as much information as possible as the inquiry progresses, bearing in mind that security and law enforcement considerations may limit the amount of detail we can provide.

In the meantime, customers should monitor their payment card accounts carefully and report any suspicious activity to their card issuer. Customers or financial institutions with any questions should contact [email protected] or 409-838-1976.

Jason’s Deli recognizes that the security of credit and debit card transactions is of the utmost importance to our customers. We have, over the years, continually reviewed and periodically strengthened our security systems, as have other retailers, to meet the constant challenge of sophisticated criminal activity. We will continue that process, and will carefully consider whatever further changes may be appropriate after a thorough forensic review of this event and our payment security systems.

We appreciate the dedication of our employees and others who are working during their Christmas break to respond to this matter and protect our customers, and we thank them and their families for their sacrifice. Most importantly, we appreciate the trust our customers place in us, and we regret any inconvenience that some may experience, especially during the holidays. Thank you for your support and understanding.

Nice of them to thank the employees like that.

If this is confirmed as a breach of their system, this would not be the first time.  In September, 2010, this site reported on a malware incident involving them.

About the author: Dissent