Jimmy John’s reports data breach at 200 locations: FULL LIST

This is an archived article and the information in the article may be outdated. Please look at the time stamp on the story to see when it was last updated.
Data pix.

Sandwich shop giant Jimmy John's said today it "learned of a possible security incident involving credit and debit card data at some of Jimmy John's stores and franchised locations."

Jimmy Johns says approximately 216 stores appear to be affected. There are 23 locations in Illinois affected by this security breach, 16 are in the Chicago area, including four city locations, mainly on the North Side.

Another two stores in northwest Indiana are also affected.


Retailers Home Depot, Neiman Marcus, Michaels and Target have also been attacked by hackers in the past year.

Additional information here: https://www.jimmyjohns.com/datasecurityincident/

Jimmy John's full statement:

On July 30, 2014, Jimmy John's learned of a possible security incident involving credit and debit card data at some of Jimmy John's stores and franchised locations. Jimmy John's immediately hired third party forensic experts to assist with its investigation.

While the investigation is ongoing, it appears that customers' credit and debit card data was compromised after an intruder stole log-in credentials from Jimmy John's point-of-sale vendor and used these stolen credentials to remotely access the point-of-sale systems at some corporate and franchised locations between June 16, 2014 and September 5, 2014. The security compromise has been contained, and customers can use their credit and debit cards securely at Jimmy John's stores.

Approximately 216 stores appear to have been affected by this event. Cards impacted by this event appear to be those swiped at the stores, and did not include those cards entered manually or online. The credit and debit card information at issue may include the card number and in some cases the cardholder's name, verification code, and/or the card's expiration date. Information entered online, such as customer address, e-mail, and password, remains secure. The locations and dates of exposure for each affected Jimmy John's location are listed on http://www.jimmyjohns.com.

Jimmy John's has taken steps to prevent this type of event from occurring in the future, including installing encrypted swipe machines, implementing system enhancements, and reviewing its policies and procedures for its third party vendors.

We apologize for any inconvenience this incident may have on our customers. Jimmy John's values the privacy and security of its customers' information, and is offering identity protection services to impacted customers, although Jimmy John's does not collect its customers' Social Security numbers. To take advantage of these services, or for more information, call (855) 398-6442. In addition, customers are encouraged to monitor their credit and debit card accounts, and notify their bank if they notice any suspicious activity. Additional recommendations for protecting your information can be found at http://www.jimmyjohns.com.

Jimmy John's will post information related to its ongoing investigation on the Company's website, www.jimmyjohns.com.

Data pix.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s


  • ZebraStripes

    I had my first Jimmy John’s sandwich the other day. I ordered online and glanced outside as the Jimmy John’s deliveryman drove by looking for my building. 10 minutes later he finally found it. When I finally sat down to eat it, I realized they gave me the wrong sandwich. I wasn’t going to wait and have them fix it, so I ate it. I found it delicious but the portion of meat was small. This will be the last time I bother ordering from them.

  • Johnnie Hannah

    Not happy about swiping my debt card at the jimmh johns I went to it was a new card and they still swiped it four timez before I said anything I have nothing good to say about them at this time

  • Jaki

    You found out about this on July 30th and the breaches continued to happen into September??????? Why did you not warn your customers while this continued to happen for more than a month after you first found out about the incident. Jimmy John’s you better believe you just lost a customer. I will drive an extra five miles to go to a competitor.

Notice: you are using an outdated browser. Microsoft does not recommend using IE as your default browser. Some features on this website, like video and images, might not work properly. For the best experience, please upgrade your browser.