Chipotle Data Breach – Class Action Investigation

Chipotle Data Breach – Class Action Investigation

Chimicles & Tikellis LLP (“C&T”) is investigating a potential class action lawsuit against Chipotle Mexican Grill Inc. (“Chipotle”) following its announcement that Chipotle has detected a security breach in its electronic processing and transmission of confidential customer and employee information. Chipotle identified that the breach may affect transactions with Chipotle that occurred between March 24, 2017 and April 18, 2017. In SEC Form 10-Q filed on April 26, 2017, Chipotle acknowledged that unauthorized activity on Chipotle’s network supporting payment processing could result in theft of credit or debit card information.

On May 26, 2017, Chipotle issued a press release that provided further information about the incident. According to the press release, Chipotle had completed an investigation which “identified the operation of malware designed to access payment card data from cards used on point-of-sale (POS) devices at certain Chipotle and Pizzeria Locale restaurants between March 24, 2017 and April 18, 2017. The malware searched for track data (which sometimes has cardholder name in addition to card number, expiration date, and internal verification code) read from the magnetic stripe of a payment card as it was being routed through the POS device.” The press release cautioned consumers who used a payment card at one of the affected locations to “remain vigilant to the possibility of fraud.”

If you believe your personal financial information was compromised by the recent data breach at Chipotle, please contact the lawyers listed on this page.

(*) Indicates required field: When communicating with us through this site or otherwise in connection with a matter for which we do not already represent you, your communication may not be treated as privileged or confidential, and does not create an attorney-client relationship between you and our Firm.

Attorneys for this case:

Benjamin F. Johns
Andrew W. Ferich