ROYAL OAK (WWJ) – There’s been a data breach that may impact recent visitors to the Detroit Zoo.
Zoo officials say an investigation is underway at Service Systems Associates — a third-party vendor which operates retail shops at nine zoos across the U.S., including the Detroit Zoo — after malware was detected in its point-of-sale software.
According to Detroit Zoological Society CEO Gerry VanAcker, the breach only affects those who made credit or debit card purchases at any of the zoo’s six retail shops between March 23 and June 25, 2015.
Cards used for tickets, concession stands and membership sales were not impacted and are secure — due to the fact that they’re processed through a separate system.
“We are obviously concerned that the vendor’s system was compromised,” said VanAcker. “Transactions made since June 26 are not affected by the previous breach, and it is safe to use a credit or debit card at SSA’s retail locations.”
In addition to card numbers, hackers may have also gained access to names and other critical data — including three-digit CVV security codes.
SSA says it has notified credit card companies of this situation and zoo guests who notice any fraudulent activity on a credit or debit card should contact the relevant card issuer as soon as possible. Most credit card companies do not hold customers liable for fraudulent charges if they are promptly reported.
The investigation comes after the zoos were contacted by police over stolen credit card information.
Zoo customers who believe they may be affected by the breach can get more information at this link.