Wawa Data Breach Class Action Investigation

Chimicles Schwartz Kriner & Donaldson-Smith LLP is investigating a potential data breach class action lawsuit against Wawa following recent news that it detected a security breach in its database and servers that has potentially affected all of their locations.

Wawa, Inc. is an American chain of convenience stores and gas stations located along the East Coast of the United States, operating in Pennsylvania, New Jersey, Delaware, Maryland, Virginia, Washington, D.C. and Florida. Wawa CEO, Chris Gheysens, stated in a letter to customers on Thursday, December 19, 2019, that Wawa has experienced a data security incident involving malware on Wawa payment processing servers. This malware affected customer payment card information used at potentially all Wawa locations beginning at different points in time after March 4, 2019 until it was contained on December 12, 2019. 

This malware affected payment card information, including credit and debit card numbers, expiration dates, and cardholder names on payment cards used at potentially all Wawa in-store payment terminals and fuel dispensers.  This sensitive information is valuable to criminals who place stolen payment card data for sale on the dark web, which other criminals purchase in order to perpetrate identity theft and other frauds. Criminals can also use this stolen information to create counterfeit cards to purchase high-priced items from other retailers.

If you used a debit or credit card at one of these locations and think your personal financial information was compromised by this recent data breach, please contact the lawyers listed on this page.