Popeyes Restaurants Suffer Data Breach

January 23, 2017, Written By Bill Hardekopf

CCC Restaurant Enterprises, LLC, the company that operates Popeyes Louisiana Kitchen, announced a data security breach that could have affected credit and debit cards used at the restaurants. The payment processing system for the popular food chain was compromised last year between May 5 and August 18 at select locations.

Information gathered during the breach may include cardholder names, debit and credit card numbers, expiration dates, and security codes. As always, consumers are encouraged to monitor their financial accounts and report any unauthorized charges to their bank or credit card provider.

The company found malware on the payment terminals for physical locations of the restaurant. Merchandise, gift cards, or other items purchased online were not involved with the hack. Most of the affected locations were in Texas, but there were two in North Carolina and one in Georgia. The malware was active at different times at each of these locations, so not all customers during the May-August time period were affected.

Popeyes says it has “contained the incident” and that the cards compromised during the data breach are no longer at risk. They have hired a third-party forensics team to monitor their systems and provide enhanced security against future events.



The information contained within this article was accurate as of January 23, 2017. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


About Bill Hardekopf

Bill Hardekopf is the CEO of LowCards.com and covers the credit card industry from all perspectives. Bill has been involved with personal finance for over 15 years. He is a frequent contributor to Forbes, The Street and The Christian Science Monitor.
View all posts by Bill Hardekopf