Hy-Vee investigating possible data breach at gas stations, restaurants

WEST DES MOINES - Hy-Vee is in the 'earliest stages” of an investigation into whether payment card data was breached at some of its fuel pumps, drive-thru coffee shops and restaurants.

The grocer announced Wednesday it recently detected unauthorized activity at some of its payment processing systems and 'immediately” began an investigation with assistance from leading cybersecurity firms.

Company officials also alerted federal law enforcement and the payment card networks, a news release says.

Hy-Vee said it believes its actions have stopped the unauthorized activity on its payment processing systems.

The company's systems for the fuel pumps, coffee shops and restaurants - including Market Grilles, Market Grille Expresses and Wahlburgers locations - lack the encryption technology that renders card data unreadable at its grocery stores, drugstores and convenience stores, which are not believed to be involved in the potential breach.

Transactions processed through Aisles Online, Hy-Vee's online grocery ordering platform, also are not involved, the company said.

Hy-Vee did not indicate specific time frames or locations Wednesday but said it will notify customers once further details emerge.

' Comments: (319) 398-8366; thomas.friestad@thegazette.com