Cyber Incident Victim: El Agave Restaurant

In early March 2014, Fairmont, Minnesota police began receiving hundreds of reports involving fraudulent credit and debit card transactions linked to El Agave Restaurant, a local dining establishment. The fraudulent activity spanned at least 13 U.S. states, including geographically dispersed locations such as Texas, Arizona, and New York. Authorities confirmed all compromised payment cards showed a common point of exposure at El Agave, indicating a systemic breach rather than isolated incidents. The scale of reports—over 200 filed with Fairmont police within approximately one week—highlighted the widespread nature of the financial compromise. Investigators determined the breach resulted from a point-of-sale system hack at the restaurant, though the specific intrusion method or malware variant was not publicly disclosed. No evidence suggested restaurant employees participated in or had prior knowledge of the compromise.

Fairmont police initiated the investigation upon receiving the initial fraud reports and subsequently collaborated with the U.S. Secret Service, which joined the case due to its jurisdiction over significant financial crimes. El Agave management fully cooperated with authorities despite having no prior awareness of the breach before police notification. The incident exclusively impacted customers who had used payment cards at the restaurant, with fraudulent transactions occurring externally rather than at the business itself. Law enforcement did not publicly identify whether card data was stolen, resold, or used for specific types of fraudulent purchases beyond confirming unauthorized usage. The investigation remained active at the time of reporting, with no recovery timeline provided for affected consumers or disclosure of whether the point-of-sale vulnerability had been remediated.