(WHNT) – Sandwich chain Jimmy John’s is the latest business to confirm its customers’ credit and debit card information may have been compromised.
Jimmy John’s posted a statement about the apparent data breach on its website.
The statement says that the incident only affects customers who used credit or debit cards in-store, information entered online went unaffected.
“If you’re going to use credit cards or debit cards, you can’t guarantee you won’t be a victim of identity theft,” said Michele Mason, president of the Better Business Bureau of North Alabama.
The company statement includes a list of 216 stores in 37 states were affected. While none are in the Tennessee Valley, two are in Tuscaloosa, raising concerns about college students who may have recently swiped their cards in-store.
“There are a lot of families that will probably need to be keeping a watch on their credit card statements right now,” said Mason.
The sandwich company says they discovered the problem on July 30 and have contained it, as well as installed enhancements to protect customers who use plastic.
But keep a close eye on your statements, and not just for the short-term.
“They may wait a month or so to use your information with the hope that you will let your guard down,” said Mason.
Officials with the Champaign, Illinois-based chain say someone stole log-in credentials and used that information to install malware used to obtain credit and debit card information between June 16 and September 15.
Jimmy John’s says it is offering identity protection services to impacted customers.