Dunn Bros. coffee locations hit by data breach caused by third party

Dunn Bros. is reporting a data breach affecting over 65 locations in Minnesota and seven other states, along with several other popular restaurants in the Twin Cities area. Dunn Brothers Coffee is a Minneapolis-based coffeehouse chain

The breach potentially exposed sensitive debit and credit card information of customers. The breach occurred between January 3 and January 24, 2024, through a compromised point-of-sale (POS) system managed by Bemidji-based North Country Business Products. North Country Business Products (NCBP) is a company that specializes in providing technology solutions and services primarily for the hospitality, restaurant, and grocery sectors.

North Country Business Products detected suspicious activity on certain client networks on January 4, 2024, just a day after the breach began. Following the discovery, they have since taken steps to fix the issue and bolster their systems to prevent future incidents.

Exposed data

• Cardholders' names
• Credit and debit card numbers
• Expiration dates
• Three- or four-digit security codes (CVV)

The breach predominantly impacted Dunn Bros. locations in Minnesota, but also extended to Wisconsin, Iowa, North and South Dakota, Texas, Missouri, and Tennessee. Additionally, several other restaurants in Minnesota were affected, including:

• Burger Jones (Burnsville)
• Casa Rio (Anoka)
• Charlie's Sports Bar & Grill (Becker)
• Chino Latino (Minneapolis)
• Hopper's Bar and Grill (Waconia)
• Pittsburgh Blue (Maple Grove)
• Sebastian Joe's (W. Franklin Avenue, Minneapolis)

No information has been disclosed regarding the exact number of individuals affected by the breach or the total value of the stolen data.