First it was Target, then Neiman Marcus and Michael’s Arts and Crafts. Now it seems as if one of the nation’s most successful car wash chains has suffered a data breach.
In an email to customers, Splash Car Wash Founder and CEO Mark Curtis said the breach occurred from late last February to the middle of May. Since it came out this week, the number of possible victims has increased from 1400 to 30,000 of the wash’s nearly 400,000 customers (about 10%) so far, at six Connecticut Splash locales: Fairfield, Cos Cob, Shelton, Greenwich, Bridgeport and West Haven.
“Immediately following notice of the breach, Splash Car Wash engaged a third-party forensic investigator and sought guidance from banking institutions to quickly remediate the source of the breach” Curtis said in the email.
As a result, credit card systems at all 16 Splash locations have been replaced by credit card readers verified as safe and provided by banks. Curtis also said Splash and their peers in the car care industry are working with the Secret Service and local police as part of a larger ongoing federal investigation.
This breach does not affect customers with unlimited plans. The data in their customer rewards system is encrypted.
Local media has started to report on this including News 12, The Greenwich Time, and WTNH News 8