Millions of card details stolen from popular US restaurant chain

News
By
published

Hackers found their way into Point-of-Sale (POS) system used at Dickey’s

Dickey's Barbecue Pit
(Image credit: Shutterstock / Ken Wolter)

Popular US restaurant chain Dickey’s Barbecue Pit has suffered a significant data breach that compromised the card details of millions of customers, researchers have discovered.

Security firm Gemini Advisory was the first to identify the incident after three million card details were listed for sale on underground marketplace Joker’s Stash, under the moniker “BLAZINGSUN”.

Analysis of the database revealed the card details were lifted from in-store Point-of-Sale (POS) systems in use across Dickey’s restaurants. In total, the hackers are said to have gained access to POS systems in 156 Dickey’s restaurants across 30 states.

The payment records are said to be linked with transactions processed using the outdated magstripe method and are being sold at a median price of $17 per card.

Dickey's Barbecue Pit data breach

According to a Gemini Advisory blog post, the hackers collected the three million card details over the course of more than a year, between July 2019 and August 2020.  

What’s more, the security firm expects fresh Dickey’s records to be added to the Joker’s Stash in the months to come, based on previous activity on the marketplace.

Dickey’s has acknowledged the incident, but is yet to confirm the precise nature of the attack, nor the full extent of the damage.

“We received a report indicating that a payment card security incident may have occurred. We are taking this incident very seriously and immediately initiated our response protocol and an investigation is underway,” said a company spokesperson in a statement.

“We are currently focused on determining the locations affected and time frames involved. We are utilizing the experience of third parties who have helped other restaurants address similar issues and also working with the FBI and payment card networks.”

The popular barbecue chain is no stranger to security incidents, having suffered a ransomware attack in 2015 that saw the company dispossessed of thousands of dollars in marketing assets.

Initial signs, however, suggest this most recent cyber incident is much more severe, with far-reaching consequences for customers.

Joel Khalili
Joel Khalili
News and Features Editor

Joel Khalili is the News and Features Editor at TechRadar Pro, covering cybersecurity, data privacy, cloud, AI, blockchain, internet infrastructure, 5G, data storage and computing. He's responsible for curating our news content, as well as commissioning and producing features on the technologies that are transforming the way the world does business.

Latest in Security
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
A hacker wearing a hoodie sitting at a computer, his face hidden.
Experts warn this critical PHP vulnerability could be set to become a global problem
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
A close-up of a phone screen showing the Telegram, Signal and WhatsApp apps
Agentic AI has “profound” issues with security and privacy, Signal President says
botnet
Another top security camera maker is seeing devices hijacked into botnet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
Latest in News
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
TCL QM7K TV on orange background
TCL’s big, bright new mid-range mini-LED TVs have built-in Bang & Olufsen sound
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
Homepage of Manus, a new Chinese artificial intelligence agent capable of handling complex, real-world tasks, is seen on the screen of an iPhone.
Manus AI may be the new DeepSeek, but initial users report problems
Google Maps
Nightmare Google Maps glitch is deleting timelines, and there isn't a fix yet
More about security
botnet

YouTubers targeted by blackmail campaign to promote malware on their channels
A hacker wearing a hoodie sitting at a computer, his face hidden.

Experts warn this critical PHP vulnerability could be set to become a global problem
Netflix

Netflix tried to fix 80s sitcom A Different World with AI but it gave us a different nightmare
See more latest
Most Popular
Ryzen AI Max+ 395
Race to launch most powerful AI mini PC ever heats up as GMKTec confirms Ryzen AI Max+ 395 product for May 2025
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Whirlwind I Computer
Happy birthday, Director! The first operating system in the world turns 70 today
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
Tesla Model 3
Tesla's EV sales are plummeting – as used Model Y and Model 3 prices crash to bargain levels
TCL QM7K TV on orange background
TCL’s big, bright new mid-range mini-LED TVs have built-in Bang & Olufsen sound
A computer screen showing a spreadsheet in use.
This entire nation's public health department was found to be running on a single Excel spreadsheet
Person using Dyson V8 vacuum
Dyson vacuums have one big problem and I don't understand why
Glowing server racks inside a data center.
The dirty little secret about AI hardware that you should know about: server vendors have to wrestle with wafer thin margins and bigger customers