P.F. Chang’s China Bistro, a national casual dining restaurant chain, confirmed in June 2014 that it had suffered a payment card breach after KrebsOnSecurity reported that a large batch of stolen cards — dubbed ‘Eataly’ by underground card shops — was traced back to P.F. Chang’s locations. The breach involved POS malware installed on restaurant systems that scraped payment card track data from memory during transactions. The malware was active from approximately September 2013 through June 2014, affecting approximately 33 P.F. Chang’s restaurant locations. An estimated 2 million payment cards were compromised. After discovering the breach, P.F. Chang’s switched to manual card imprinting at all US restaurant locations while it cleaned and rebuilt its POS infrastructure — a highly visible response that drew media attention. The company worked with the Secret Service and engaged security firm Mandiant for forensic investigation. The breach was attributed to FIN6, a financially motivated threat actor known for targeting retail and hospitality POS systems. P.F. Chang’s settled class-action lawsuits. The incident highlighted the restaurant sector’s particular vulnerability to POS malware, as restaurants frequently process high volumes of payment cards with systems that may lag in patching and network segmentation compared to large retailers.