Dairy Queen Confirms Backoff Malware Breach
Security Watch
SHARE
Facebook X Pinterest WhatsApp

Dairy Queen Confirms Backoff Malware Breach

Backoff malware
Written By
Sean Michael Kerner
Sean Michael Kerner
Oct 10, 2014
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

After a month of speculation and investigation, restaurant chain International Dairy Queen officially confirmed on Oct. 9 that its stores had been the victim of a data breach.

International Dairy Queen has both the Dairy Queen ice cream chain and Orange Julius beverage locations as part of its organization, and both types of restaurants were affected by the data breach. In total, Dairy Queen has published a list of 395 of its stores across the United States that were impacted by the breach.

On the list, Dairy Queen details the start and end dates of the data breach, which occurred for varying lengths of time in August.

Dairy Queen’s investigation into the incident has identified the root cause and the malware that is involved in the breach.

“As a result of our investigation, we discovered evidence that the systems of some DQ locations and one Orange Julius location were infected with the widely-reported Backoff malware that is targeting retailers across the country,” John Gainor, president and CEO of Dairy Queen, wrote in a letter to customers. “The investigation revealed that a third-party vendor’s compromised account credentials were used to access systems at those locations.”

US-CERT first began warning about Backoff malware in early August. It has since warned that more than 1,000 retailers may have been impacted by Backoff.

Backoff malware is typically injected by way of remote access into a vulnerable point-of-sale (POS) system, which appears to be what happened in the Dairy Queen incident.

The Dairy Queen breach is similar to the recently confirmed breach at Goodwill, in that a compromised third-party vendor is being blamed. The Goodwill data breach impacted up to 868,000 credit cards and 330 stores. Goodwill, however, has claimed that its stores were not breached by Backoff malware, but rather by malware known as rawpos.

Dairy Queen now joins an increasingly growing list of retailers that have publicly confirmed data breaches in 2014, including Home Depot, SuperValu, P.F.Chang’s, Target and Michaels.

Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.
Sean Michael Kerner
eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

facebook
linkedin
youtube
rss
x

Company

About us Contact us Advertise with us

Categories

Latest News Resources Artificial Intelligence Video Big Data & Analytics Cloud Networking

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information