Chimicles Schwartz Kriner & Donaldson-Smith LLP (CSK&D) is investigating a potential class action lawsuit against Chipotle Mexican Grill Inc. (“Chipotle”) following its announcement that Chipotle has detected a security breach in its electronic processing and transmission of confidential customer and employee information. Chipotle identified that the breach may affect transactions with Chipotle that occurred between March 24, 2017 and April 18, 2017. In SEC Form 10-Q filed on April 26, 2017, Chipotle acknowledged that unauthorized activity on Chipotle’s network supporting payment processing could result in theft of credit or debit card information.
On May 26, 2017, Chipotle issued a press release that provided further information about the incident. According to the press release, Chipotle had completed an investigation which “identified the operation of malware designed to access payment card data from cards used on point-of-sale (POS) devices at certain Chipotle and Pizzeria Locale restaurants between March 24, 2017 and April 18, 2017. The malware searched for track data (which sometimes has cardholder name in addition to card number, expiration date, and internal verification code) read from the magnetic stripe of a payment card as it was being routed through the POS device.” The press release cautioned consumers who used a payment card at one of the affected locations to “remain vigilant to the possibility of fraud.”
If you believe your personal financial information was compromised by the recent data breach at Chipotle, please contact the lawyers listed on this page.