NEW YORK (AP) — Wendy's said hackers were able to steal customers' credit and debit card information at 1,025 of its U.S. restaurants, far more than it originally thought.
The hamburger chain said Thursday hackers were able to obtain card numbers, names, expiration dates and codes on the card, beginning in late fall. Some customers' cards were used to make fraudulent purchases at other stores.
Wendy's Co. urged customers to check their accounts for any fraudulent purchases.
The Dublin, Ohio, company first announced it was investigating a possible hack in January. In May, it said malware was found in fewer than 300 restaurants. About a month later, it said two types of malware were found and the number of restaurants affected was "considerably higher."
There are more than 5,700 Wendy's restaurants in the U.S.
Customers can see which locations were affected through the Wendy's website . The company said it is offering free one-year credit monitoring to people who paid with a card at any of those restaurants.
The hacks include at least 39 locations in Georgia and 17 in Alabama.
Checks on the website set up for customers to find affected restaurants showed in Georgia, the hackers struck outlets in 31 cities and towns. There were three restaurants each in Dalton, Dublin and Savannah; two each in Athens and Bethlehem, and one each in Blairesville, Blue Ridge, Byron, Calhoun, Chatsworth, Clarkesville, Cleveland, Cochran, Cornelia, Dahlonega, Ellijay, Fort Oglethorpe, Gainesville, Greensboro, Hinesville, Jasper, Milledgeville, Pooler, Rome, Sandersville, Statesboro, Thomastown, Thomson, Toccoa, Trenton and Vidalia.
Alabama restaurants include five in Huntsville; two in Madison, and one each in Cullman, Decatur, Evergreen, Greenville, Guntersville, Jasper, Mobile, Rainsville, Scottsboro and Selma.
Wendy's data breach information: https://www.wendys.com/en-us/about-wendys/the-wendys-company-updates
Wendy's impacted restaurant search: https://payment.wendys.com/paymentcardcheck.html