INDIANAPOLIS — Chili’s is the latest company to suffer a data breach.

The restaurant chain released a statement to customers at brinker.mediaroom.com/ChilisDataIncident

They believe the breach is limited to between March and April this year and only for in-restaurant purchases.

Chili’s did not go into detail about which corporate-owned restaurants were affected or how many people may have been impacted.

Chili’s said they believe malware was used to gather information, and they are working with third-party forensic experts.

Dear Valued Guests,

This notice is to make you aware that some Chili’s restaurants have been impacted by a data incident, which may have resulted in unauthorized access or acquisition of your payment card data, and to provide you information on steps you can take to protect yourself and minimize the possibility of misuse of your information.

We sincerely apologize to those who may have been affected and assure you we are working diligently to resolve this incident.

What Happened? On May 11, 2018, we learned that some of our Guests’ payment card information was compromised at certain Chili’s restaurants as the result of a data incident. Currently, we believe the data incident was limited to between March – April 2018; however, we continue to assess the scope of the incident. We deeply value our relationships with our Guests and sincerely apologize to those who may have been affected.

We immediately activated our response plan upon learning of this incident. We are working with third-party forensic experts to conduct an investigation to determine the details of what happened. Below is information on how you can protect yourself and your information.

We are working diligently to address this issue and our priority will continue to be doing what is right for our Guests. We are committed to sharing additional information on this ongoing investigation with our Guests as we learn more.

What Information Was Involved? Based on the details of the issue currently uncovered, we believe that malware was used to gather payment card information including credit or debit card numbers as well as cardholder names from our payment-related systems for in-restaurant purchases at certain Chili’s restaurants. Currently, we believe the data incident was limited to between March – April 2018; however, we continue to assess the scope of the incident.

Chili’s does not collect certain personal information (such as social security number, full date of birth, or federal or state identification number) from Guests. Therefore, this personal information was not compromised.

What Are We Doing? We are working with third-party forensic experts to conduct an extensive investigation to confirm the nature and scope of this incident. Law enforcement has been notified of this incident and we will continue to fully cooperate. We are working to provide fraud resolution and credit monitoring services for those Guests who may have been impacted. This website will be updated when this information becomes available. We are committed to sharing additional information with our Guests as we learn more and providing resources for you about this incident (see below).

For More Information. We are committed to sharing additional information on this ongoing investigation with our Guests as we learn more and will continue to update this website.