Sonic Drive-In customer credit card information may have been compromised


Credit unions should take note of a recently disclosed data breach at Sonic Drive-In, which may have led to some five million credit and debit cards being exposed.

Security expert and investigative journalist Brian Krebs first reported the possible breach after he learned of multiple instances of fraudulent transactions on cards previously used at Sonic locations.

Almost 5 million debit and credit card accounts were being peddled in underground cybercrime stores, security news site KrebsOnSecurity reported on Tuesday.

Fast-food chain Sonic Drive-In may have been the victim of a massive data breach affecting millions of customers, according to news reports. "How many more data breaches do consumers need to suffer before these companies are held accountable?"

More news: Football legend, Olympic fencing champ unveiled as torch runners for PyeongChang 2018
More news: Labour Promise Limiting Law for Credit Card Debt
More news: Foldable Samsung Galaxy X could launch in January 2018

KrebsOnSecurity reported that upon request for comment, Sonic confirmed that they were investigating a "potential incident" at some locations. The company "immediately engaged third-party forensic experts and law enforcement when we heard from our processor", it said.

Last year Wendy's announced that hackers were able to steal customers' credit and debit card information at more than 1,000 of its US locations. The restaurant chain issued a statement to KrebsOnSecurity.

It is still unclear how many customers were affected or how many Sonic stores were impacted in the breach. "While law enforcement limits the information we can share, we will communicate additional information as we are able".

Sonic has over 3,600 locations across 45 states.