Wawa suffered a months-long data breach affecting nearly all of its locations nationwide, the gas station chain announced Thursday. According to Wawa, malware on the payment processing systems at “potentially all” locations both in-store and at gas pumps was discovered in mid December and is believed to have been operating since early March.
Among the compromised data is payment card numbers, names and expiration dates were affected. Pin numbers, payment card security codes and driver’s license information was not compromised.
“I apologize deeply to all of you, our friends and neighbors, for this incident,” Chris Gheysens, Wawa CEO, said in an open letter. “We take this special relationship with you and the protection of your information very seriously.”
For customers affected, Wawa recommends registering for free identity protection services with Experian, keeping an eye on payment card statements, ordering a credit report and reviewing a reference guide it provides on its website. For more information visit https://www.wawa.com/alerts/data-security.