POST Online Media Lite Edition


Sonic consumers suffer massive credit card hack

Staff Writer |
Sonic Corp. has confirmed a credit-card related data breach that has affected an unknown number of its store payment systems.

Article continues below

Brian Krebs, an independent journalist who investigates breaches, reported late Tuesday on his KrebsOnSecurity website that a data breach in Sonic's payment systems may have led to a "fire sale" on millions of stolen credit and debit card accounts that are now being peddled in shadowy underground cybercrime stores.

A batch of some five million credit and debit card accounts were first put up for sale on September 18 in a credit-card theft bazaar called Joker's Stash, Krebs said.

Sonic said it was informed last week by its credit card processor of "unusual activity" regarding credit cards used at its restaurants. The company's shares fell as much as 4.4 percent to $23.52 on Wednesday, its biggest fall within one day since August 8.

In a statement, Sonic said, "We are working to understand the nature and scope of this issue, as we know how important this is to our guests. We immediately engaged third-party forensic experts and law enforcement when we heard from our processor.

"While law enforcement limits the information we can share, we will communicate additional information as we're able."

What to read next

BofA to pay $772 million for illegal credit card practices
Costco enters deal with Citi, will accept Visa
Bank of America to sell UK consumer credit card business