RiskLens Fast Facts on Cyber Risk for Retailing – Wawa Data Breach

In July, 2022, Wawa, the convenience store/gas station operator, agreed to pay up to $8 million to attorneys general for seven states and the District of Columbia, to settle a lawsuit over the breach in 2019 of PCI that compromised about 34 million credit cards. Hackers inserted malware and rooted around Wawa’s systems for eight months due to lax security, the attorneys general alleged, including failure to follow the PCI DSS standard and an SIEM that didn’t send alerts (Wawa …

breach cyber cyber risk data data breach fast risk risklens fast facts