Data Breach At Animal Kingdom’s Yak & Yeti Restaurant
Landry’s, who run the Yak & Yeti restaurant at Walt Disney World’s Animal Kingdom have reported a Data breach at several of their locations including the Yak & Yeti. However it doesn’t effect the either of the Rainforest Cafe’s that the company also run on the Walt Disney World resort.
This data breach only effects Guests who paid with a credit card between May 8th and December 3rd, 2015, so visitors should check their credit card statements for unauthorised activity. This doesn’t effect people who paid with cash or MagicBands.
Here are the official details:
Landry’s, Inc. and Golden Nugget Hotels and Casinos (collectively “the Companies”) value the relationship we have with our customers. Because we understand the importance of protecting payment card information, we have been working tirelessly to complete the previously announced payment card investigation. The investigation began immediately after we received a report in early December of suspicious activity regarding cards that had been legitimately used in some of our locations. We hired a leading cyber security firm to examine our payment card systems, implemented advanced payment processing solutions, and have been working with the payment card networks and law enforcement.
Findings from the investigation show that criminal attackers were able to install a program on payment card processing devices at certain of our restaurants, food and beverage outlets, spas, entertainment destinations, and managed properties. The program was designed to search for data from the magnetic stripe of payment cards that had been swiped (cardholder name, card number, expiration date and internal verification code) as the data was being routed through affected systems. Locations were affected at different times during one or both of the following periods: from May 4, 2014 through March 15, 2015 and from May 5, 2015 through December 3, 2015. In addition, the at-risk timeframe for a small percentage of locations includes the period from March 16, 2015 through May 4, 2015. To view all of our restaurants, hotels, casinos, entertainment destinations, and managed properties, click here. For a list of only the affected locations and respective at-risk timeframes, click here.
Enhanced security measures, including end-to-end encryption, have been implemented to prevent a similar issue from occurring in the future, and we continue to support law enforcement’s investigation. We are also working closely with the payment card networks to identify potentially affected cards so that the card issuers can be made aware and initiate heightened monitoring of those accounts. For those customers we can identify as having used their card at an affected location during that location’s at-risk window and for whom we have a mailing address or e-mail address, we will be mailing them a letter or sending them an e-mail.
If you used a payment card at an affected location during its at-risk window, we recommend that you remain vigilant to the possibility of fraud by reviewing your payment card statements for any unauthorized activity. You should immediately report any unauthorized charges to your card issuer because payment card rules generally provide that cardholders are not responsible for unauthorized charges reported in a timely manner. The phone number to call is usually on the back of your payment card. Please see the section that follows this notice for additional steps you may take to protect your information.
Landry’s and Golden Nugget regret any inconvenience or concern this may have caused. If you have any questions, please call (877) 238-2151 (U.S. and Canada), Monday thru Friday from 9:00 am to 7:00 pm EST.