Shoney’s Restaurant Suffers Credit Card Data Breach

April 17, 2017, Written By Bill Hardekopf

Several corporate-owned Shoney’s restaurant locations were recently impacted by a credit card data breach. Best American Hospitality Corporation, the company that manages and operates these locations, issued a statement detailing the nature of the breach and its effective dates.

BAHC said malware was remotely installed on POS terminals at 37 Shoney’s locations. Many of the affected restaurants are in Tennessee, but there are also reports from Mississippi, Georgia, Alabama, Florida and five other states. The breach first occurred on December 27, 2016 at most locations, but some were not affected until mid-January. The malicious program was contained on March 6, 2017.

The company hired a third-party cybersecurity team to investigate the matter. Their research showed the malware targeted magnetic strip card data, not information stored on a smartchip. Affected data may include cardholder name, debit or credit card number, verification code, and expiration date. The cardholder name was not collected for every transaction.

As with most data breaches, the company is encouraging their customers to monitor their financial accounts and credit reports for any suspicious activity. Best American Hospitality Corporation is working with the affected cardholders’ banks to increase awareness and fraud prevention efforts.

Updated information about the data breach is available on BestAmericanHospitality.com.



The information contained within this article was accurate as of April 17, 2017. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.