The Elephant Bar chain said it has discovered malware in the payment processing systems of 29 restaurants, a breach that exposed the credit card information of customers who visited between Aug. 12 and Dec. 4.
The length of the exposure varied from location to location, it noted.
The polished-casual operation said it was alerted to the problem on Nov. 3 by its credit-card processor. A forensic investigation followed, and a public announcement of the breach was issued yesterday.
The malware has been removed and payment processes have been revised to protect customers going forward, Elephant Bar said in an announcement yesterday.
It added that it was working with law enforcement authorities to find the culprits behind the breach, and has joined forces with its credit-card processors to strengthen safeguards.