Millions of Sonic customers may have had their credit card information stolen.
A breach of Sonic’s store payment system has resulted in possibly as many as five million stolen credit and debit card accounts being “peddled in shadowy underground cybercrime stores,” CyberSecurity news site KrebsOnSecurity reported Today.
According to KrebsOnSecurity, five million credit and debit cards were put up for sale on a credit card theft website earlier in September. Many of the millions of cards were linked to a breach at Sonic Drive-In, though the blog notes it is possible that other companies’ security systems were also breached.
Krebs wrote:
The first hints of a breach at Oklahoma City-based Sonic came last week when I began hearing from sources at multiple financial institutions who noticed a recent pattern of fraudulent transactions on cards that had all previously been used at Sonic.
This breach may well dwarf the Wendy’s breach, which affected around 1,000 stores.