Sonic Corp. is on the receiving end of another proposed class action filed in the wake of its recently reported security breach, which was announced on September 26, 2017. The case alleges that the defendant, which the complaint notes operates “the largest chain of drive-in restaurants in the United States,” failed to take reasonable measures to prevent and detect the breach and neglected to warn customers that its 30-year-old payment systems were not adequately protected. As a result, up to five million credit and debit card accounts belonging to Sonic customers were stolen, the complaint claims.
The suit argues that Sonic should have been tipped off by recent data breaches suffered by its competitors and implemented a security system that would sufficiently protect consumer data. The plaintiffs claim that they and proposed class members were unlawfully exposed to risk of identity theft and must now spend a significant amount of time monitoring their accounts for signs of fraudulent charges.