Slashdot Mirror

← Back to Stories (view on slashdot.org)

Card Breach Announced at Chili's Restaurant Chain (bleepingcomputer.com)

Posted by msmash on from the security-woes dept.

Catalin Cimpanu, reporting for BleepingComputer: Malware has harvested payment card details from some Chili's restaurants, Brinker International, the company behind the restaurant chain announced on Friday. Brinker says it detected the malware on Friday, May 11, the same day it made the announcement. The company said it is still investigating the incident together with law enforcement and third-party forensic experts. Based on the current details it was able to gather, the company said the malware appears to have infected some of its payment systems from where it gathered credit or debit card numbers and cardholder names.

88 comments

  1. Solution... by b0s0z0ku · · Score: 3, Insightful

    Solution ... don't eat at Chili's. It's not like you'll really miss crappy fake "Tex Mex" food heated in a microwave. If you really need this cr@p, pay with good, old-fashioned, cash or a pre-paid card.

    1. Re: Solution... by b0s0z0ku · · Score: 0

      Never understood why this has to be a racial thing. I'm whiter than white, yet have a much higher spice tolerance/enjoyment level than my partner, who's West Indian.

    2. Re:Solution... by ShanghaiBill · · Score: 5, Insightful

      Solution ... don't eat at Chili's.

      Better solution: Fix the idiotic CC system the requires the same information to be both widely known and secret.

    3. Re: Solution... by greenwow · · Score: 0

      Don't know why this was voted down since Hillary confirmed she did:

      http://time.com/4297996/hillar...

      That means she's one of us and we should give her our vote.

    4. Re:Solution... by Anonymous Coward · · Score: 1

      You say that like all chains don't use Sysco food. The only difference between chains now is the quality of food that they order from Sysco. Sysco doesn't offer anything spicy, which is my main complaint, but after eating at over a hundred Mexican restaurants between Georgia and Washington state, none of them had spicy food anyway. It just sucks that you simply cannot get spicy Mexican food unless you cook it yourself.

    5. Re:Solution... by Anonymous Coward · · Score: 0

      I love spicy food, but I haven't had it since I moved to the Seattle area in 2007. All of the food trucks I've asked that would answer that question said they bought food from Sysco. That just sucks since they could cook their meat in spices, but decide not to. I want to try spicy Mexican food, but the only time I've eaten it was when I cooked it myself at home.

    6. Re:Solution... by Anonymous Coward · · Score: 0

      I've traveled a lot in the US for the past 26 years, and I've never had food in a restaurant that was spicy. I've been to hundreds of Mexican and Thai places that weren't hot.

    7. Re:Solution... by b0s0z0ku · · Score: 2

      I should have qualified further. Don't eat at most chains. If it's traded on Wall Street and has > 5 locations, quality takes a plummet.

      You can definitely get spicy/authentic Mexican food in AZ, CA, NM, or NY (Brooklyn). Places with ... large Mexican communities :)

    8. Re: Solution... by greenwow · · Score: 1

      But she is adding hot sauce. It's much better when you add chili peppers while cooking the meat.

    9. Re:Solution... by toonces33 · · Score: 1

      Sysco is a big one, but they are not the only supplier out there, and many customers split their orders among several suppliers. In many areas there are smaller purveyors that specialize in ethnic foods.

      A place like Chilis won't do this - they (along with a lot of other chains) have "dumbed down" the food because they think highly spiced food will put off some customers. So they make it bland. You might as well go to T.G.I.Fridays.

    10. Re:Solution... by youngone · · Score: 1

      We don't have Chili's where I live, so I had a look at their menu online.
      It didn't make me want to try their food. I'm guessing it's really cheap.

    11. Re:Solution... by Anonymous Coward · · Score: 0

      You need to ask for it "Indian hot" and go with an Indian friend. Then it won't be spicy, but at least it won't be bland.

    12. Re:Solution... by Anonymous Coward · · Score: 0

      > Sysco doesn't offer anything spicy

      Wrong. We do, but almost no one ever orders that. We spent a lot of money on a marketing research project, and the common theme we found was that if something isn't spicy enough then customers will still return but if it is too spicy then they won't return. That means it is better to be bland rather than be accurate in the description.

    13. Re: Solution... by greenwow · · Score: 1

      I've lived in the Seattle since I was born almost 63 years ago, and I have never found a restaurant that is spicy. Even I have to specify that I want something "Indian spicy" but still don't get it spicy. The closest I've some to getting something even near as spicy as I want was when I asked for that with three Indian friends that all told the waitress that I meant that. It sill wasn't as spicy as their meals.

    14. Re: Solution... by b0s0z0ku · · Score: 1

      Note to self: don't move to Seattle :)

    15. Re: Solution... by Anonymous Coward · · Score: 1

      This. Meat cooked property is so much better than bland meat that later has chilies added later. Just don't understand how many restaurants don't get that. We want spicy food.

    16. Re: Solution... by Anonymous Coward · · Score: 0

      Lived in Seattle since I was born, and I've been to plenty of Mexican, Indian, and Thai restaurants. None of them have been spicy.

    17. Re:Solution... by Anonymous Coward · · Score: 0

      >t if something isn't spicy enough then customers will still return but if it is too spicy then they won't return.

      That is the core reason restaurants are so bland. Customers will return if the meal is bland but they won't if it is tasty.

    18. Re: Solution... by greenwow · · Score: 1

      > None of them have been spicy.

      Correct. Spices are expensive so the vast majority of restaurants won't provide spicy food no matter how much they charge.

    19. Re: Solution... by Anonymous Coward · · Score: 0

      People will return to restaurants that are too bland but not ones that offer flavor. They are doing the correct thing by being bland.

    20. Re:Solution... by Anonymous Coward · · Score: 1

      My wife used to work for Sysco, and I can say that everything Chiles gets from Sysco, is to the specs that Chiles has given Sysco. She says that if you wanted spicy, you could almost certainly get it from Sysco - the problem is that a lot of customers choose to not offer spicy because they think it will put off some customers, and the customers who do like spicy will eat there anyways.

    21. Re:Solution... by Anonymous Coward · · Score: 0

      Better solution: Fix the idiotic CC system the requires the same information to be both widely known and secret.

      How's that a better solution? Oh, right, you think the CC system is a good thing. Me? I'd love to see it eaten away slowly from the inside. Make CCs a kiss of death to companies.

    22. Re: Solution... by Anonymous Coward · · Score: 0

      But meat is better cooked in spices rather than adding it later.

    23. Re: Solution... by Anonymous Coward · · Score: 0

      Which is why the restaurant I work for cooks only bland food.

    24. Re: Solution... by Anonymous Coward · · Score: 0

      No restaurant in Seattle serves spicy food. Just socks.

    25. Re: Solution... by Anonymous Coward · · Score: 0

      But Hillary said she carries hot sauce in her purse so that proves that wrong.

    26. Re: Solution... by baegucb · · Score: 1

      I only lived in Seattle for 10 years in the 1990s. But I could get spicy food at Thai places. It helps that I can speak some Thai, and they'd know I was serious when I wanted my meal spicy. Mexican food there was bland. Korean food varied from place to place.

    27. Re:Solution... by Anonymous Coward · · Score: 0

      Better solution: Fix the idiotic CC system the requires the same information to be both widely known and secret.

      Yeah, sure we'll just implement a system that requires you to put in your ATM pin number too. So that not only can we make random charges to your card, we can also make withdrawls from your bank account! A.K.A "Chip and PIN."

      The chip was fine. That can't be duplicated. (easilly.) Adding the damn PIN number as a requirement was stupid. Although it provides some extra security, it's pointless if you use it everywhere. Some places have covers over the pin pad to prevent shoulder surfing, others don't. Still other places wouldn't even know if someone replaced the pad much less if it was being watched by someone. Overall, the more the credential is used, the more it is exposed to malicious actors. I want my ATM session protected, I don't care as much if the random gas station in the middle of nowhere kansas is as well protected.

      Some banks will still allow access to your account online or over the phone with only the CC number and PIN. I imagine those banks should be losing customers right about now.

      Of course a better solution would be private keys and cert requests generated by the account holder and signed by the institution, but we'll never get that out of them. Just like we'll never get the personal data removed from the transaction logs either. (Could just use hashes of the invoice and payment info. But then governments wouldn't be able to track transactions as easily, and we can't have that now can we?)

    28. Re:Solution... by ShanghaiBill · · Score: 1

      Just because you can think of a stupid alternative method of implementing transactions, that doesn't mean it is the only alternative.

      You should get a passport and go see the world. Most of the world has already fixed this problem.

      In America, a CC merchant receives the following information during a transaction:
      1. Your name
      2. Your credit card number
      3. The expiration date
      4. The CVV
      5. Your PIN, if using a debit card and the keypad is compromised.

      Of course, this is more than enough for a crook.

      In some other countries, the merchant receives this information:
      1. A one-time transaction ID that encodes the amount of the transaction and cannot be modified or reused, except for a full or partial refund.
      2. NOTHING ELSE - no name, no account number, no PIN, no phone number, nothing.

      The PIN is keyed into your own cellphone, not equipment controlled by the merchant.

    29. Re:Solution... by Anonymous Coward · · Score: 0

      Have you seen this Slashdot video yet? Have you bought the family friendly Goat C shirt?

      - FatCashewsLoveMe

    30. Re:Solution... by Anonymous Coward · · Score: 0


      MODDOWN! ; creimer spam post again!

      creimer wants you to click on his youtube channel, then click on his stupid amazon affiliate link spam on Youtube. There is nothing of value on creimer youtube channel. Only creimer click-bot goes there.

      The tests we ran on Chris have shown that Chris has the intelligence of an ameba:
      https://en.wikipedia.org/wiki/...

      So, technically, he is able to conceive some kind of agenda but it will be silly or impossible to follow on a human scale.

      For example, Chris had an agenda to post anything he felt like on Slashdot which did not work well because it was based on his false beliefs that he had an infinite number of karma points as he wrote here several times.

      Several people here explained to Chris that karma maxed out at some level like 50 or so but Chris kept on insisting that his python script had confirmed that he had millions of karma points!

      Oh well, as I wrote before: "It isn't Chris' fault if he is the way he is. We do the best we can do with him and he is partially integrated into society. We try to cure his abnormal need for attention but he is kind of stubborn and won't listen to anybody."

      For the valuable /. users that might already have read the following, please note that there is an important update.

      IMPORTANT UPDATE:
      Special Education for the Santa Clara County Office of Education has invested money to buy Chris a new chair:
      http://www.keynamics.com/image...

      Information about Christopher Dale Reimer and autistic people:

      Autistic people have obsessions about things normal people don't care. For example, one of our autistic patient went haywire when he realized that there was a penny missing in his pocket change.

      To calm him down, one of our educator pretended to have found it on the floor and gave a penny to him.

      The autistic patient condition went even worse because he realized it wasn't the same penny!

      Chris has an obsession with budgeting every penny. He doesn't understand that most people do not budget to the penny and have a flexible amount they allow for miscellaneous items.

      I am Nancy Guerrero and I am Director of Special Education for the Santa Clara County Office of Education. We use Chris' (a.k.a. creimer,cdreimer) picture in our document because he is the hardest case we have ever had to handle:
      http://www.sccoe.org/depts/stu...

      Our artists were inspired by the low carb diet that Christopher follows scrupulously for the small lunch box and by the picture linked below for the rest. I am sure that you will notice the similarities such as the bump on the side of his chest and more:
      https://ibb.co/gVad65

      Please be easy on Christopher although, I am aware that some of our staff handling Chris post joke comments here and obvoiusly, the Santa Clara County Office of Education disapprove that behavior vehemently:
      http://ibb.co/mRVSaG

      But it isn't Chris' fault if he is the way he is. We do the best we can do with him and he is partially integrated into society. We try to cure his abnormal need for attention but he is kind of stubborn and won't listen to anybody.

      Thank You dear users,
      ---
      Nancy Guerrero
      Director
      Special Education
      Santa Clara County Office of Education

      Exactly Nancy,

      It seems like Chris is a victim here. He keeps on reading those SEO, youtube algorithm, basically get rich quick sites. He doesn't realize that he is the fish for them since they make money off him with their own schemes. Then, he wastes his time trying to implement what those sites suggest and he ends up disturbing people.

      I mean, those crooks tell Chris that h

    31. Re: Solution... by tlhIngan · · Score: 1

      Never understood why this has to be a racial thing. I'm whiter than white, yet have a much higher spice tolerance/enjoyment level than my partner, who's West Indian.

      I think in general most people don't have a high spice tolerance. I've known a few who get the sweats just eating a bell pepper (no kidding). Anything spicier and ... well, it ain't pretty.

      Among the people I know, I appear to have the most spice tolerance or desire for spice. One of my coworkers cooked up something really spicy (chickpea curry) and it was delicious, but only had a mild kick. Yet that was about as much as they could tolerate.

      About the most spicy food I could find was Chinese, Hunan in particular actually had a decent kick, and "really spicy" gave me the sweats. It was literally coated in the tiny Thai chilies (with seeds, of course).

      I always wondered why Tabasco sauce even has "mild" versions - it adds a nice flavor to food, but I don't see what's even a little spicy about it.

      Sadly, even something like ghost peppers, unless prepared yourself, generally is too mild..

    32. Re:Solution... by jbmartin6 · · Score: 1

      I'm going to keep on using my credit card with no worries, since like almost everyone I am not liable for false charges. There's no reason to change my behavior, breaches like this are the bank's problem, not mine.

      --
      This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
    33. Re: Solution... by jbmartin6 · · Score: 2

      Huh? Spices are really cheap now that the Portuguese have figured out how to sail around Africa reliably.

      --
      This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
    34. Re:Solution... by jbmartin6 · · Score: 1

      WeChat and AliPay are making some inroads in the US, a few places are now accepting payment in RMB or USD. I notice the list of linkable banks in WeChat keeps growing.

      --
      This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
    35. Re:Solution... by mjwx · · Score: 1

      Solution ... don't eat at Chili's.

      Better solution: Fix the idiotic CC system the requires the same information to be both widely known and secret.

      Even better solution: Make the storage of card details illegal with jail terms for any business and supplier of POS terminals that permit it.

      This will never happen as it will force a small percentage of people back to cash, seeing as banks skim a percentage off each transaction on credit, they'll lose millions in pure profit from that small percentage.

      As an aside, my solution is easier and faster to implement.

      --
      Calling someone a "hater" only means you can not rationally rebut their argument.
    36. Re: Solution... by crypticedge · · Score: 1

      But she can't control the kitchen of every restaurant she goes to, so a bottle of hot sauce in her purse helps her at least add what little bit she can.

    37. Re:Solution... by yodleboy · · Score: 1

      This is why I NEVER select the "save my card for faster purchases" option. Well, except for Amazon, but that's the only exception. It takes me all of 20 to 30 seconds to enter card for each transaction. I can spare the time...

    38. Re: Solution... by Anonymous Coward · · Score: 0

      Wait, they do that now?

    39. Re: Solution... by rail2rail · · Score: 1

      And Trump eats burned steak with ketchup. I'll stick with the hot sauce aficionado versus the guy attempting to replicate Big Macs in the Whitehouse kitchen. https://www.eater.com/2017/11/...

    40. Re: Solution... by volmtech · · Score: 1

      Buffalo Wild Wings, the mild was too hot for me.

  2. I want my data back by Anonymous Coward · · Score: 4, Funny

    data back
    data back
    data back
    data back
    data back
    data back
    (repeat)

  3. wouldn't be easier? by AndyKron · · Score: 2

    Wouldn't it be easier just to report those that haven't been hacked yet?

    1. Re:wouldn't be easier? by Anonymous Coward · · Score: 0

      Wouldn't it be easier just to report those that haven't been hacked yet?

      1) Mom's
      2) Joe's

  4. Wonder if the koisks were the security breach. by SeaFox · · Score: 5, Interesting

    Chili's has those stupid at-table tablet kiosks that allow you to order things and pay your bill yourself.

    In the current climate of card skimming devices being installed by criminals at ATMs and gas pumps -- consider that.
    A portable, wireless, card reading device that is being left unsupervised for long periods of time, and the customer is being encouraged to use by the staff.

    1. Re:Wonder if the koisks were the security breach. by Anonymous Coward · · Score: 0

      The Chili's kiosks by me support EMV and contactless payments, so it unlikely to be that.

      However whenever I go to the bar, I have a hard time convincing the bar tenders to actually reconfigure a table kiosk there so I can use the EMV functionality, and the coupons their rewards system offers. Instead, the bartenders insist on swiping cards using their historical ordering & payment system.

      More often than not the bar kiosks are not placed anywhere near the customer at the bar who placed the order either. I don't think the wait staff seems to know or care much about the kiosks, at least where I go to Chili's.

    2. Re:Wonder if the koisks were the security breach. by Anonymous Coward · · Score: 0

      Having used those "Ziosk" (IIRC) units at Chili's (and Red Robin), I am fairly sure they are Android-based tablets mated up with mag stripe readers, so not very reassuring. I did not want to use them when I first encountered them some years ago, but gave in to the convenience factor (still try not to touch their smeared up screens until I am done eating, and can go wash my hands right after adding my smears) after a year or 2 of annoying the waitresses with handing them my card to process the "old-fashioned" way - i.e. take my card where I can't see what they were doing with it - damned if you do, damned if you don't...

      Oh well, have not eaten at a Chili's for some months, so will depend on my Visa card issuer, plus Id theft protection service offered for free from a breach at my former employer's outsourced HR service a couple years ago. Signs of the time, eh?

    3. Re:Wonder if the koisks were the security breach. by amiga3D · · Score: 1

      I never have that problem. I hand them cash and so far it's never been hacked. I use a CC for major transactions and online purchases but if it's not a lot of money and I can pay cash I do. It's more convenient for me and safer for my account.

    4. Re:Wonder if the koisks were the security breach. by cozytom · · Score: 1

      I was talking to the Ziosk people about 4 years ago, and yes they are Android based tablets. The management of the company was pushing these tablets to reduce costs, since "wait staff won't have to take your order" and "you won't have to wait around for your bill".

      I went to Outback recently, and yes they had the Ziosk tablets also. I just pushed the screen towards the wall of the booth, and had a wonderful time chatting with the waitperson, never having to touch the device the rest of my visit.

      I think it is a solution looking for a problem.

  5. Commendable by Anonymous Coward · · Score: 0

    That they announced so quickly, unlike many others. That's probably because all those others were justifiably blasted.

  6. Re:More blood on Trump's tiny hands... by greenwow · · Score: 2, Funny

    Never remember any data leaks under Obama, so this is the Republican's fault.

  7. I only ever pay cash by Anonymous Coward · · Score: 0

    I only ever get cash out of ATMs physically located inside banks and i thoroughly check for tampering every single time.
    It is far too easy to skim cards by replacing/modifying/hacking card readers. There have been numerous cases of people in overalls and clipboards simply walking into establishments and replacing or stealing things without a single person questioning them. Do you really think Sally 6-dollars-an-hour is going to question 2 official looking guys who say they need to do an upgrade on the card readers or the place will have to stop accepting cards and lose thousands in lost sales? Fuck no.
    Stop paying for shit with cards until they can come up with a more secure method or this is just going to continue to happen until you get pwned and reconsider your judicious use of cards.

    1. Re:I only ever pay cash by Anonymous Coward · · Score: 0

      You fool! I only use confederate gold - none of this yankee paper money

    2. Re:I only ever pay cash by Anonymous Coward · · Score: 1

      I only ever get cash out of ATMs physically located inside banks

      You forgot to mention how you gave your bank account number to your employer to direct deposit your pay, your employer outsourced direct deposit to the cheapest service, and as soon as the direct deposit service company gets compromised, your bank account will be empty.

    3. Re:I only ever pay cash by b0s0z0ku · · Score: 1

      "You" may do so, smart people don't.

      1. Get an account at a credit union -- no monthly fees.
      2. Create a separate account for direct deposits/checks.
      3. Transfer money as needed, only keep enough in the account to cover outgoing payments.

      If someone tries to suck it dry, joke's on them!

  8. Ass Breach Announced at Chili's Restaurant by Anonymous Coward · · Score: 0

    Ass Breach Announced at Chili's Restaurant - affecting everyone who has ever eaten there.

    1. Re:Ass Breach Announced at Chili's Restaurant by Anonymous Coward · · Score: 0

      Leading to a Colonic Mass Ejection.

  9. Why are people still eating at Chilis? by alternative_right · · Score: 1

    It's like a Southwestern Applebees. All the food still comes off a Sysco truck. You'll do better at Taco Bell for price/performance and also volcanic flatulence.

    --
    Alternative Right.
    1. Re:Why are people still eating at Chilis? by Anonymous Coward · · Score: 0

      Neither one offer spicy food. Can't believe so many of my friends still go to Taco Bell, Chillis, or Applebee's then complain about food being bland.

    2. Re:Why are people still eating at Chilis? by Anonymous Coward · · Score: 0

      Restaurants know that people that complain food is too spicy won't return, but people that don't think their food is spicy enough will return. That is why most restaurants offer bland food from Sysco.

    3. Re:Why are people still eating at Chilis? by drinkypoo · · Score: 1

      Neither one offer spicy food. Can't believe so many of my friends still go to Taco Bell, Chillis, or Applebee's then complain about food being bland.

      Taco bell has some relatively hot sauces, although you have to ask for them. One of them is even a pretty good copy of Tapatio.

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    4. Re:Why are people still eating at Chilis? by ArchieBunker · · Score: 1

      How about that airplane food? Isn't it terrible? Talk about an antique joke. If mildly spicy food makes you shit yourself then I suggest you see a doctor.

      --
      Only the State obtains its revenue by coercion. - Murray Rothbard
  10. Liberal Leadership Fails Again by Anonymous Coward · · Score: 0

    Had Chili's managers attended Trump University there would have had the skills necessary to prevent these breeches.

  11. No problem for Soy Boys by Anonymous Coward · · Score: 0

    Shouldn't affect all the tofu dick soy boys at Slashdot. Wake them when there's a breach at "Miranda's House of Vegan Soy".

  12. Pay Cash by Anonymous Coward · · Score: 0

    Try paying with cash sometime, you'll get less identity theft.

    Kids these days.

  13. Re:More blood on Trump's tiny hands... by Anonymous Coward · · Score: 1

    This. Credit card problems didn't happen under Obama.

  14. Yeah announcing it the same day. Third party help by raymorris · · Score: 4, Insightful

    I don't like it when companies spend months before making an announcement, but making a public announcement the SAME DAY it's first discovered is surprising. It takes time to investigate and see if it's only an attacker in a certain city hitting nearby restaurants (such as over their wifi on no-table kiosks) or if it's very widespread. Chili's is a franchise, so there are many different companies running Chili's branded restaurants and they probably have separate payment systems.

    It also takes time for the technical people, executives, lawyer, and PR people to talk and make sure the public statement says the right things - that it's accurate and doesn't unnecessarily implicate Chili's in something that may be just one franchisee, for example. Getting the statement out the same day it was discovered is surprising.

    I'm glad to see they've already brought in third-party experts. In-house people may want to cover their own ass, or cover their friend's ass, or likely simply don't specialize in computer forensics and investigations, so calling in third-party experts is a really good idea.

  15. Re:More blood on Trump's tiny hands... by Anonymous Coward · · Score: 0

    When your president says he could (and I quote) "go out in the street and kill anyone, it won't even hurt his chance of being elected", it fuels the nation with a certain amount of craziness that makes people think it's ok to steal CC numbers. So yes, entirely Republican fault, proven.

  16. Did they hack the Pay at Table Tablets? by Joe_Dragon · · Score: 1

    Did they hack the Pay at Table Tablets?

  17. New Commercial... by HockeyPuck · · Score: 3, Funny

    Chilis.....

    I want my data back data back data back...
    I want my data back data back data back...

  18. that's nothing by Anonymous Coward · · Score: 0

    after eating at Chili's ®, I breached their bathroom with explosive diarrhea. It was bad, I mean I didn't make it into the stall. Hell, I was dropping trou before I even made it into the bathroom (Imagine... being ticketed for indecent exposure was NOT be the worst thing that happened to me that night).

    So I stumble into the bathroom, liquid shit pressing against my sphincter and... one stall is occupied (by a couple fags sucking each other off, no less) and the other is broken. I did what I had to do. I plopped my ass on the sink. A literal geyser of shit and farts exploded from my asshole. It just so happens that the shape of the bowl combined with the angle of my ass caused the stream of shit to ricochet and bounce up, coating the wall (not to mention my back). After 5 minutes of that, I looked like a victim of R Kelley's rape room.

    But it got worse. The sink broke. so now I'm lying in the floor in a pool of my own shit with pieces of porcelain impaled in my asshole (which is now leaking blood AND shit. Fortunately, I hit my head and blacked out and didn't wake up until I was at the hospital, pumped full of morphine and saline.

    Anyhow, don't order the shrimp fajitas. Just, don't.

    1. Re:that's nothing by Anonymous Coward · · Score: 0

      Did the bathroom fags rape you before or after they called an ambulance?

    2. Re:that's nothing by Anonymous Coward · · Score: 0

      like i said, I passed out. they couldn't rape my ass because it of the brown river emanating from within. but i suspect they tea bagged me. I'pretty sure they enjoyed and impromptu bukake session before the manager came in to investigate.

  19. The worst part of all this by scourfish · · Score: 1

    Is that now the world knows you eat at Chilis

  20. You get what you deserve... by Anonymous Coward · · Score: 0

    For patronizing these mega chain restaurants. I just have to laugh at the people that consider these places a "date night". If someone wanted to take me on a date to one of these places i would suddenly "become sick" come the night of the date and likely never speak to them again. You're basically eating McDonalds that is brought out to you by a server. Most of the food is just prepackaged crap run though a microwave or one of those industrial quick heating ovens. It's probably EXACTLY the same packaged stuff you can buy from these chains in grocery stores, just instead packaged in huge non descript brown boxes with multiple servings in each.

    Support your local mom and pop restaurants!

    1. Re:You get what you deserve... by b0s0z0ku · · Score: 1

      ... or just cook them dinner, to show them what food (not "food") is supposed to taste like.

    2. Re:You get what you deserve... by Anonymous Coward · · Score: 0

      You also get what you deserve from these places when it comes to the aftermath the next day of peeing out of your butt or the thick goo like greasy sludge that you could tar a roof with.

    3. Re:You get what you deserve... by arkane1234 · · Score: 1

      Dude, that's never happened to me there. You've got problems. Seriously, see a doctor.

      --
      -- This space for lease, low setup fee, inquire within!
    4. Re:You get what you deserve... by Anonymous Coward · · Score: 0

      Most mom & pop restaurants aren't any better. You can almost figure out who their supplier is (Sysco, Aramark, etc.) based on what you order.

  21. Come to think of it, I announced the same day by raymorris · · Score: 1

    After writing that, it occurred to me that the one time I had to make a "similar" announcement, I did so on the same day it was discovered. That was a much, much smaller company than Chili's, though, with much simpler systems.

    In our our case, investigation lead to the conclusion that there probably was no leak of data, but because we saw something that raises eyebrows we notified customers. We suggested that they keep an eye on their credit card statements over the next days and weeks and let us know if they saw any questionable charges.

    Which reminds me, there is something in the Chili's same-day announcement which could have been done better. The apparent leak was credit card numbers, not social security numbers. Yet Chili's suggested customers monitor their credit reports and file a fraud flag with the credit reporting agencies. That's the wrong course of action. Those things might make sense if your SSN was leaked. For a leaked CC number, the right thing to do is watch that credit card account. Bad guys use your CC number to make fraudulent charges in the CC, not to open new accounts.

  22. Chillis,, baybie back Breach,, by Anonymous Coward · · Score: 0

    with BBQ Sauce..

    News @ 11

  23. Oh wow by Anonymous Coward · · Score: 0

    And people think cryptocurrency is insecure!

  24. Get to work by Anonymous Coward · · Score: 0

    Come on Millennials, hurry up and kill this restaurant already!

  25. Yet another example of why I use cash again by Rick+Schumann · · Score: 1

    Every week there is at least one report like this one of a data breach of electronic payment systems -- which is why I've been paying cash for everything I do in-person for more than a year now, to reduce the chances of getting my banking information stolen in one of these breaches.

    Nervous Nellies, Doomsayers, and Chicken-Littles need not comment; I don't care about all your pants-peeing nightmare scenarios about some masked stranger robbing me, heard it all before, literally don't give a fuck, don't waste your time. Similarly, I don't need or want anyone's 'advice' on how to 'keep myself safe' while still using plastic. I'm perfectly happy doing things the way I'm doing them.

    The day that they actually manage to properly secure electronic payment systems to the point where breaches are rare or never happen will be the day I re-think my cash-only policy. Until that day comes this is so far as I'm concerned the best way to prevent being compromised in a payment system breach, and I furthermore encourage others to adopt a cash-whenever-possible policy themselves.