Tarheel Takeout data hacked

Tarheel Takeout customers are keeping a close eye on their bank accounts after the company revealed hackers might have accessed account information.

In an email sent Wednesday to people with Tarheel Takeout accounts, co-founder Wes Garrison said the company’s server was hacked Oct. 29.

Information the hackers might have accessed includes credit and debit card numbers and their expiration dates, email addresses, delivery and billing addresses and passwords to Tarheel Takeout accounts.

The company does not yet know how many — if any — customers were affected.

Senior sociology major Erin Flannelly, who occasionally uses Tarheel Takeout, believes her information was compromised during the hack.

Flannelly said an unauthorized charge from Zappos.com appeared on her debit card shortly after the hack occurred.

She said she doesn’t like that the company stores its customers’ payment information.

“I was kind of annoyed that it saved my card information,” she said. “If there’s an option not to, I always delete the card.”

Garrison was not available for comment Wednesday.

Chapel Hill Police Department spokesman Lt. Josh Mecimore said the company first reported a possible breach Nov. 7 and confirmed that a breach occurred Nov. 12.

Chapel Hill police are not conducting the investigation.

“Typically something like that would be investigated by the FBI or an agency that has a much broader jurisdiction and more resources,” he said.

Tarheel Takeout is confident something like this won’t happen again.

“We have manually audited every single line of our website code to ensure that we are no longer vulnerable to this type of cyber attack, and we are confident that a breach of this nature is no longer possible,” Garrison said in the statement.

city@dailytarheel.com