Nevada Restaurant Services (NRS), a Las Vegas-based company that owns the Dotty’s restaurant chain, revealed that a data breach had compromised the personal information of its customers.
NRS was the target of a cyber-attack that compromised its systems. The information taken from the system was from before January 2021.
The company confirmed that the personal information of some of its customers was compromised. It said the compromised data included names, Social Security numbers, driver’s license numbers or state ID numbers, passport numbers, financial account, and routing numbers, health insurance information, treatment information, biometric data, medical records, taxpayer identification numbers, and credit card details.
NRS is a hospitality company with annual revenue of more than $70 million that operates in various locations across Nevada, Illinois, and Oregon. It has about 600 employees.
“In January 2021, NRS identified the presence of malware on certain computer systems in its environment. NRS immediately commenced an investigation to determine the full nature and scope of the incident and to secure its network,” the company said in a statement.
“Through this investigation, NRS determined that it was the target of a cyber-attack and that, in connection with the cyber event, an unauthorized actor was able to copy certain information from the system on or before January 16, 2021.”
The company noted that the details of the incident were not the same. They also said that they would only send out letters to the victims if their mailing addresses were valid, others should call an assistance line at (833) 909-3914.
Vital Vegas said in July that Dotty’s had about 300,000 customers in its player database.
Following the attack on their platform, NRS Security has strengthened its security measures and will be providing free identity theft protection services to their customers.
Following the breach, the company told its victims to regularly monitor their accounts and to use their one free credit report check each year. They also suggested putting fraud alerts on their file.
“However, you should be aware that using a credit freeze to take control over who gets access to the personal and financial information in your credit report may delay, interfere with, or prohibit the timely approval of any subsequent request or application you make regarding a new loan, credit, mortgage, or any other account involving the extension of credit,” the company added.