NASHVILLE, Tenn.—Another restaurant chain has been victimized by a data breach.
This time a management company for some of Shoney's restaurants has confirmed that some locations were affected by a data breach at point of sale from last December to this March before malware used in the breach was contained, sources indicated.
The company, Best American Hospitality Corp., said the malware searched for "track" data – cardholder name, card number, expiration date, and internal verification code – read from card magnetic stripes during routing.
The restaurant chain includes approximately 150 company-owned and franchised locations in 17 states from Maryland to Florida in the east, and from Missouri to Texas in the West.
The management company’s statement followed a report from Krebs on Security that sources in the financial industry said they had received confidential alerts from the credit card associations about suspected breaches at dozens of Shoney locations. Krebs stated that it was unclear whether the problem is limited to those locations or if it extends company-wide.
It’s also unclear whether the apparent breach affects corporate-owned or franchised stores — or both, Krebs added.