KrebsOnSecurity reports Sonic Drive-In has suffered a data breach affecting an unknown number of its 3,600 locations across the U.S. The breach has potentially compromised the debit and credit card information of millions of customers. Security Researcher Brian Krebs writes the payment card information may have been sold on a cybercrime marketplace called “Joker's Stash.” The breach was first discovered after financial institutions reported fraudulent activity coming from accounts used at an Oklahoma City–based Sonic restaurant. “Our credit card processor informed us last week of unusual activity regarding credit cards used at Sonic,” the chain said in a statement. “We are working to understand the nature and scope of this issue, as we know how important this is to our guests. We immediately engaged third-party forensic experts and law enforcement when we heard from our processor.”
If you want to comment on this post, you need to login.