Data breach compromises credit card data of more than 13,000 restaurant customers
Industry
Retail
Background
Employees: 251 - 1,000
Coverages: Breach Response
Case Study
After receiving an unexpected phone call, a restaurant group learned it was experiencing an ongoing cyber attack. But it wasn’t a threat actor on the other end of the line—it was the Federal Bureau of Investigation.
The FBI notified the business that data from four of its servers had been compromised: three corporate servers and one restaurant server containing customer credit card information. Considering it processes more than $8 million in credit card transactions annually, the restaurant group immediately notified Coalition in hopes of minimizing the damage and exposure.
Within 48 hours, incident responders utilized script collectors to identify how the threat actor was accessing the servers and what data was impacted. Coalition’s breach response partner ejected the threat actor and reclaimed control of the network. Unfortunately, even with quick action, the breach compromised customers’ credit card data.
Our investigation determined the incident began with a simple phishing email. Once the threat actor entered the network, they elevated their own credentials to access other accounts. With unfettered access, the threat actor was able to compromise credit card data for more than 13,000 individuals. The data breach eventually resulted in a classaction lawsuit, but one key coverage reduced the business’ cost to a fraction of the overall amount. Breach Response covered the costs of notifying customers about the data breach, as well as costs related to litigations, depositions, and negotiations during the lawsuit. In the end, the restaurant group only paid $21,000 out of pocket, while its policy covered the rest of the $3 million claim.
Insurance products offered by Coalition may be written on behalf of third-party carriers including Allianz Group* (A.M. Best A+ rating), Arch Specialty Insurance Company (A.M. Best A+ rating), Ascot Group** (A.M Best A rating), Fortegra Group (A.M. Best A- rating), Lloyd’s of London (A.M. Best A+ rating), Swiss Re Corporate Solutions*** legal entities (A.M. Best A+ rating), Vantage Risk Specialty Insurance Company (A.M. Best A- rating), and Chaucer Insurance Company DAC (A.M. Best A rating).
*Insurance products are offered in the U.S. by Coalition Insurance Solutions Inc., a licensed insurance producer and surplus lines broker. Insurance products may not be available in all states, For further details see here. ** Insurance products may be underwritten by Ascot Specialty Insurance Company, Ascot Insurance Company, or an affiliated company, which are members of Ascot Group. *** Insurance products may be underwritten by North American Capacity Insurance Company, Swiss Re Corporate Solutions America Insurance Corporation, or an affiliated company, which are members of Swiss Re Corporate Solutions. Fortegra® is the marketing name for the service contract and insurance operations of the subsidiaries of The Fortegra Group, Inc.