A restaurant chain has confirmed that a payment card breach affected more than three dozen of the locations it currently manages.
On 14 April, Best American Hospitality Corp. (BAHC) revealed it had received a report indicating someone had stolen payment cards used at some of the corporate-affiliated locations for Shoney’s, an “All American Style Family Restaurant” based in Tennessee.
BAHC, a privately held restaurant chain which manages Shoney’s locations and others, enlisted the help of Kroll Cyber Security, LLC, to figure out what happened. It turns out malware targeted point-of-sale (POS) equipment at the affected restaurants. Upon successful infection, the software sought out customers’ track data, or the name, card number, expiration date, and internal verification code read from the magnetic stripe of a payment card.