International Dairy Queen Inc. became the latest company to confirm a data breach, announcing Thursday the “Backoff” malware affected payment card information at 395 of its 4,500-plus U.S. locations.
The company said a third-party vendor’s compromised account credentials were used to access systems.
Dairy Queen was sold to Berkshire Hathaway Inc. BRKB +1.09% in 1998. In addition to its namesake brand, it also owns the Orange Julius brand.
The company said “based on our investigation, we are confident that this malware has been contained.”
Dairy Queen said the affected systems included customer names, card numbers and expiration dates, and said there is no evidence that Social Security numbers, personal identification numbers or email addresses were compromised.
International Dairy Queen Confirms Data Breach – WSJ.