Point-of-Sale and security systems provider Information Systems & Supplies Inc. (IS&S) has sent out letters to their customers regarding a breach where their Log-Me-In credentials were compromised. The breach occurred multiple times between Feb. 28 and April 18 of 2014. The company provides services to a number of restaurants including Dairy Queen, Buffalo Wild Wings, Taco Time and others.
The compromised occurred through a phishing attack where the credentials of their corporate Log Me In account was compromised. Boston based Log Me In noticed the compromise and alerted IS&S and they notified customers.
The company is currently determining the scope of the breach and scanning for additional malware or other signs of compromise. The letter below is what is sent out to their restaurant clients.
ISS Vancouver Breach