FIRE News: Panera Bread has exposed customer data for eight months in clear text

April 3, 2018 — Panera Bread has exposed customer data for eight months in clear text

Lisa Baergen, Director at NuData, comments on a report issued yesterday by FIRE News disclosing that Panerabread.com, the website for the American chain of bakery-cafe fast casual restaurants by the same name, leaked millions of customer records, including names, email and physical addresses, birthdays and the last four digits of the customer’s credit card number, for at least eight months before it was taken offline.

The most proven and effective solutions for protecting customer are readily available and increasingly widely implemented: multi-layered security solutions that incorporate verification via passive biometrics, without adding friction, by evaluating a consumer’s inherent behaviour online during the transaction process. This field-proven approach lets the company confirm that a consumer is legitimate or a would-be fraudster before loss to the company can occur, even if the correct data – perhaps stolen – was used. And it also prevents the company’s reliance on the sort of personally identifiable customer data that’s once again been leaked. Ultimately, the shift to more advanced multi-layered solutions will, over time, render stolen information valueless to cybercriminals, as passive biometric verification defies use by third parties.

For the complete article, go here.