Sonic Corp. has reached a $4.3 million deal to settle claims with customers whose credit and debit card information was exposed in a 2017 data breach.
According to reports, the drive-in burger chain’s point-of-sale system was infected with malware, exposing payment and credit card information of its customers who made purchases at one of the 325 locations between April 7, 2017 and Oct. 28, 2017.
Each class member who used a credit or debit card at an affected store between April and October 2017 would get $10, and those with fraudulent or unauthorized charges would receive $40. Attorneys would get a third of the settlement, $1.44 million, plus expenses, reported Law 360. The deal is subject to an Ohio judge’s approval.