Jump to content

Sonic: Difference between revisions

From Consumer Rights Wiki
← Older editNewer edit →
VisualWikitext
SquidthePlummer (talk | contribs)
confirmed
604 edits
Sonic Spam Messages: Added 1 more incident
SquidthePlummer (talk | contribs)
confirmed
604 edits
Line 18: Line 18:
On September 16, KrebonSecurity disclosed that Sonic suffered a data breach on its Point of sales systems, exposing an estimate 5 millions of customers financial information are being sold on a website called  Joker’s Stash.<ref>{{Cite web |date=26 September 2017 |title=Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards |url=https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |url-status=live |archive-url=https://web.archive.org/web/20180211195243/https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |archive-date=11 February 2018 |access-date=16 March 2026 |website=KrebsOnSecurity}}</ref> A few days later, the blog got traction on social media, with major new outlets covering the leak.<ref>{{Cite web |date=28 September 2017 |title=Data breach at Sonic restaurants could affect millions of customers |url=https://www.youtube.com/watch?v=Uu7mZYYWM8c |url-status=live |access-date=16 March 2026 |website=Youtube}}</ref> The company issued a public response on its website on October 4, acknowledging the breach and offering affected customers 24 months fraud protection until December 24, 2017.<ref>{{Cite web |date=4 October 2017 |title=SONIC Drive-In: Notice of Payment Card Breach |url=https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |url-status=dead |archive-url=https://web.archive.org/web/20171015010107/https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |archive-date=15 October 2017 |access-date=16 March 2026 |website=Sonic Drive In}}</ref>  
On September 16, KrebonSecurity disclosed that Sonic suffered a data breach on its Point of sales systems, exposing an estimate 5 millions of customers financial information are being sold on a website called  Joker’s Stash.<ref>{{Cite web |date=26 September 2017 |title=Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards |url=https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |url-status=live |archive-url=https://web.archive.org/web/20180211195243/https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |archive-date=11 February 2018 |access-date=16 March 2026 |website=KrebsOnSecurity}}</ref> A few days later, the blog got traction on social media, with major new outlets covering the leak.<ref>{{Cite web |date=28 September 2017 |title=Data breach at Sonic restaurants could affect millions of customers |url=https://www.youtube.com/watch?v=Uu7mZYYWM8c |url-status=live |access-date=16 March 2026 |website=Youtube}}</ref> The company issued a public response on its website on October 4, acknowledging the breach and offering affected customers 24 months fraud protection until December 24, 2017.<ref>{{Cite web |date=4 October 2017 |title=SONIC Drive-In: Notice of Payment Card Breach |url=https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |url-status=dead |archive-url=https://web.archive.org/web/20171015010107/https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |archive-date=15 October 2017 |access-date=16 March 2026 |website=Sonic Drive In}}</ref>  


The company faced 12 lawsuits from customers because of this incident, alleging the company's failure to implement up to date security practices and disclosing the incidents to customers.<ref>{{Cite web |date=12 February 2018 |title=IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF OHIO EASTERN DIVISION AT CLEVELAND |url=https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |url-status=live |archive-url=https://web.archive.org/web/20201020020507/https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |archive-date=20 October 2020 |access-date=16 March 2026 |website=ohnd.uscourts.gov}}</ref><ref>{{Cite web |last=Rizzi |first=Corrado |date=29 September 2017 |title=Sonic Hit with Class Action Almost Immediately After Data Breach Announcement |url=https://www.classaction.org/news/sonic-hit-with-class-action-almost-immediately-after-data-breach-announcement |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=15 November 2017 |title=Sonic Facing Another Class Action in the Wake of Data Breach |url=https://www.classaction.org/news/sonic-facing-another-class-action-in-the-wake-of-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=5 October 2017 |title=Sonic Corp. Facing Third Lawsuit Over Recent Data Breach |url=https://www.classaction.org/news/sonic-corp-facing-third-lawsuit-over-recent-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=19 December 2017 |title=Sonic Data Breach Sparks Another Class Action |url=https://www.classaction.org/news/sonic-data-breach-sparks-another-class-action |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref>  On October 2018, a $4.3 million settlement was reached.<ref>{{Cite web |last=Spicer |first=Christina |date=15 October 2018 |title=$4.3M Sonic Data Breach Class Action Settlement Reached |url=https://topclassactions.com/lawsuit-settlements/lawsuit-news/4-3m-sonic-data-breach-class-action-settlement-reached/ |url-status=live |access-date=16 March 2026 |website=Top Class Action}}</ref> In May 2022, a $5.4 settlement was reached, requiring sonic pay $3 million to reimburse financial institutions, and $1 or $1.50 for each payment card reissued or involved.<ref>{{Cite web |last=Heisig |first=Eric |date=7 October 2022 |title=Judge Signals Approval For Sonic's Data Breach
The company faced 12 lawsuits from customers because of this incident, alleging the company's failure to implement up to date security practices and disclosing the incidents to customers.<ref>{{Cite web |date=12 February 2018 |title=IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF OHIO EASTERN DIVISION AT CLEVELAND |url=https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |url-status=live |archive-url=https://web.archive.org/web/20201020020507/https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |archive-date=20 October 2020 |access-date=16 March 2026 |website=ohnd.uscourts.gov}}</ref><ref>{{Cite web |last=Rizzi |first=Corrado |date=29 September 2017 |title=Sonic Hit with Class Action Almost Immediately After Data Breach Announcement |url=https://www.classaction.org/news/sonic-hit-with-class-action-almost-immediately-after-data-breach-announcement |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=15 November 2017 |title=Sonic Facing Another Class Action in the Wake of Data Breach |url=https://www.classaction.org/news/sonic-facing-another-class-action-in-the-wake-of-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=5 October 2017 |title=Sonic Corp. Facing Third Lawsuit Over Recent Data Breach |url=https://www.classaction.org/news/sonic-corp-facing-third-lawsuit-over-recent-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=19 December 2017 |title=Sonic Data Breach Sparks Another Class Action |url=https://www.classaction.org/news/sonic-data-breach-sparks-another-class-action |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref>  On October 2018, a $4.3 million settlement was reached.<ref>{{Cite web |last=Spicer |first=Christina |date=15 October 2018 |title=$4.3M Sonic Data Breach Class Action Settlement Reached |url=https://topclassactions.com/lawsuit-settlements/lawsuit-news/4-3m-sonic-data-breach-class-action-settlement-reached/ |url-status=live |access-date=16 March 2026 |website=Top Class Action}}</ref> In May 2022, a $5.4 settlement was reached, requiring sonic pay $3 [[File:Plantiff Messages in Sonic 2020 Lawsuit.png|thumb|Plaintiff Messages in Sonic 2020 Lawsuit]]million to reimburse financial institutions, and $1 or $1.50 for each payment card reissued or involved.<ref>{{Cite web |last=Heisig |first=Eric |date=7 October 2022 |title=Judge Signals Approval For Sonic's Data Breach Settlement |url=https://www.bfvlaw.com/wp-content/uploads/2022/10/Judge-Signals-Approval-For-Sonics-Data-Breach-Settlement-Law360.pdf |url-status=live |access-date=16 March 2026 |website=Law360}}</ref>[[File:Plantiff Messages in Sonic 2020 Lawsuit.png|thumb|Plaintiff Messages in Sonic 2020 Lawsuit]]
Settlement |url=https://www.bfvlaw.com/wp-content/uploads/2022/10/Judge-Signals-Approval-For-Sonics-Data-Breach-Settlement-Law360.pdf |url-status=live |access-date=16 March 2026 |website=Law360}}</ref>


===Sonic Spam Messages===
===Sonic Spam Messages===


==== 2020 Lawsuit ====
====2020 Lawsuit====
On October 21, Plaintiff Danny Collins filed a class action lawsuit against Sonic, alleging the company repeatedly sent her advertising messages even after opting out by replying "Stop". The Plantiff seeks $500 or $1500 for each unsolicited marketing messages sent to consumers.<ref>{{Cite web |last=Rizzi |first=Corrado |date=22 October 2020 |title=Sonic Drive-In Hit with Class Action in Oklahoma Over Alleged Spam Texts |url=https://www.classaction.org/news/sonic-drive-in-hit-with-class-action-in-oklahoma-over-alleged-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |date=27 October 2020 |title=Sonic TCPA Lawsuit & Fast Food Telemarketing Violations |url=https://thelyonfirm.com/blog/sonic-tcpa-lawsuit/ |url-status=live |access-date=16 March 2026 |website=The Lyon Firm}}</ref> As of March 2026, the case is still in progress.
On October 21, Plaintiff Danny Collins filed a class action lawsuit against Sonic, alleging the company repeatedly sent her advertising messages even after opting out by replying "Stop". The Plantiff seeks $500 or $1500 for each unsolicited marketing messages sent to consumers.<ref>{{Cite web |last=Rizzi |first=Corrado |date=22 October 2020 |title=Sonic Drive-In Hit with Class Action in Oklahoma Over Alleged Spam Texts |url=https://www.classaction.org/news/sonic-drive-in-hit-with-class-action-in-oklahoma-over-alleged-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |date=27 October 2020 |title=Sonic TCPA Lawsuit & Fast Food Telemarketing Violations |url=https://thelyonfirm.com/blog/sonic-tcpa-lawsuit/ |url-status=live |access-date=16 March 2026 |website=The Lyon Firm}}</ref> As of March 2026, the case is still in progress.
[[File:Plantiff Messages in Sonic 2020 Lawsuit.png|thumb|Plaintiff Messages in Sonic 2020 Lawsuit]]
====2023 Lawsuit====
====2023 Lawsuit====
On January 11, a customer from Florida filed a class action lawsuit over unsolicited marketing text sent by the company. Since July 1, 2021 till December 2022, the plaintiff received marketing messages without prior consent, with one of the messages reading;<ref>{{Cite web |last=Mehorter |first=Kelly |date=13 January 2023 |title=Class Action Alleges Sonic Drive-In Sent Illegal Spam Texts |url=https://www.classaction.org/news/class-action-alleges-sonic-drive-in-sent-illegal-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><blockquote>Today only at SONIC: $0.99 Small Mozzarella Sticks! Deal
On January 11, a customer from Florida filed a class action lawsuit over unsolicited marketing text sent by the company. Since July 1, 2021 till December 2022, the plaintiff received marketing messages without prior consent, with one of the messages reading;<ref>{{Cite web |last=Mehorter |first=Kelly |date=13 January 2023 |title=Class Action Alleges Sonic Drive-In Sent Illegal Spam Texts |url=https://www.classaction.org/news/class-action-alleges-sonic-drive-in-sent-illegal-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><blockquote>Today only at SONIC: $0.99 Small Mozzarella Sticks! Deal
Line 34: Line 31:
5. +tax. Txt STOP to end</blockquote>As of May 2026, the case is still in progress.
5. +tax. Txt STOP to end</blockquote>As of May 2026, the case is still in progress.


==== 2025 Lawsuit ====
====2025 Lawsuit====
On March 4, a lawsuit was filed against Sonic for sending marketing text to customers without consent. The plaintiff claimed he was on the registry to not receive marketing text, however on March 6, 11, 13, 15, and 20, the company sent him marketing messages. Additionally, the plaintiff claims to have never had any business relationships with them.<ref>{{Cite web |last=Landis |first=Blake |date=6 March 2025 |title=FROM CORN DOGS TO COURTROOMS: Sonic’s Texts Might Cost More Than a Combo Meal |url=https://natlawreview.com/article/corn-dogs-courtrooms-sonics-texts-might-cost-more-combo-meal |url-status=live |access-date=16 March 2026 |website=The National Law Review}}</ref> The lawsuit was dismissed on September 29, 2025.
On March 4, a lawsuit was filed against Sonic for sending marketing text to customers without consent. The plaintiff claimed he was on the registry to not receive marketing text, however on March 6, 11, 13, 15, and 20, the company sent him marketing messages. Additionally, the plaintiff claims to have never had any business relationships with them.<ref>{{Cite web |last=Landis |first=Blake |date=6 March 2025 |title=FROM CORN DOGS TO COURTROOMS: Sonic’s Texts Might Cost More Than a Combo Meal |url=https://natlawreview.com/article/corn-dogs-courtrooms-sonics-texts-might-cost-more-combo-meal |url-status=live |access-date=16 March 2026 |website=The National Law Review}}</ref> The lawsuit was dismissed on September 29, 2025.


Revision as of 22:21, 16 March 2026

Sonic
File:Sonic Corporation Logo.png
Basic information
Founded 1953-06-18
Legal Structure Subsidiary
Industry Food
Also known as
Official website http://sonicdrivein.com/

Sonic Corporation is (you guessed it) also a company =)

Consumer-impact summary

Overview of concerns that arise from the conduct towards users of the product (if applicable):

  • User Freedom
  • User Privacy
  • Business Model
  • Market Control

Add your text below this box. Once this section is complete, delete this box by clicking on it and pressing backspace.


Incidents

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the Sonic category.

Malware attack (2017)

Main article: link to the main CR Wiki article

On September 16, KrebonSecurity disclosed that Sonic suffered a data breach on its Point of sales systems, exposing an estimate 5 millions of customers financial information are being sold on a website called Joker’s Stash.[1] A few days later, the blog got traction on social media, with major new outlets covering the leak.[2] The company issued a public response on its website on October 4, acknowledging the breach and offering affected customers 24 months fraud protection until December 24, 2017.[3]

The company faced 12 lawsuits from customers because of this incident, alleging the company's failure to implement up to date security practices and disclosing the incidents to customers.[4][5][6][7][8] On October 2018, a $4.3 million settlement was reached.[9] In May 2022, a $5.4 settlement was reached, requiring sonic pay $3

File:Plantiff Messages in Sonic 2020 Lawsuit.png
Plaintiff Messages in Sonic 2020 Lawsuit

million to reimburse financial institutions, and $1 or $1.50 for each payment card reissued or involved.[10]

File:Plantiff Messages in Sonic 2020 Lawsuit.png
Plaintiff Messages in Sonic 2020 Lawsuit

Sonic Spam Messages

2020 Lawsuit

On October 21, Plaintiff Danny Collins filed a class action lawsuit against Sonic, alleging the company repeatedly sent her advertising messages even after opting out by replying "Stop". The Plantiff seeks $500 or $1500 for each unsolicited marketing messages sent to consumers.[11][12] As of March 2026, the case is still in progress.

2023 Lawsuit

On January 11, a customer from Florida filed a class action lawsuit over unsolicited marketing text sent by the company. Since July 1, 2021 till December 2022, the plaintiff received marketing messages without prior consent, with one of the messages reading;[13]

Today only at SONIC: $0.99 Small Mozzarella Sticks! Deal

auto-applies in the app & at participating drive-ins 12/15. Lmt

5. +tax. Txt STOP to end

As of May 2026, the case is still in progress.

2025 Lawsuit

On March 4, a lawsuit was filed against Sonic for sending marketing text to customers without consent. The plaintiff claimed he was on the registry to not receive marketing text, however on March 6, 11, 13, 15, and 20, the company sent him marketing messages. Additionally, the plaintiff claims to have never had any business relationships with them.[14] The lawsuit was dismissed on September 29, 2025.

Products

This is a list of the company's product lines with articles on this wiki.

Add your text below this box. Once this section is complete, delete this box by clicking on it and pressing backspace.


See also

References

  1. "Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards". KrebsOnSecurity. 26 September 2017. Archived from the original on 11 February 2018. Retrieved 16 March 2026.
  2. "Data breach at Sonic restaurants could affect millions of customers". Youtube. 28 September 2017. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  3. "SONIC Drive-In: Notice of Payment Card Breach". Sonic Drive In. 4 October 2017. Archived from the original on 15 October 2017. Retrieved 16 March 2026.
  4. "IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF OHIO EASTERN DIVISION AT CLEVELAND" (PDF). ohnd.uscourts.gov. 12 February 2018. Archived (PDF) from the original on 20 October 2020. Retrieved 16 March 2026.
  5. Rizzi, Corrado (29 September 2017). "Sonic Hit with Class Action Almost Immediately After Data Breach Announcement". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  6. Shaak, Erin (15 November 2017). "Sonic Facing Another Class Action in the Wake of Data Breach". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  7. Shaak, Erin (5 October 2017). "Sonic Corp. Facing Third Lawsuit Over Recent Data Breach". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  8. Shaak, Erin (19 December 2017). "Sonic Data Breach Sparks Another Class Action". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  9. Spicer, Christina (15 October 2018). "$4.3M Sonic Data Breach Class Action Settlement Reached". Top Class Action. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  10. Heisig, Eric (7 October 2022). "Judge Signals Approval For Sonic's Data Breach Settlement" (PDF). Law360. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  11. Rizzi, Corrado (22 October 2020). "Sonic Drive-In Hit with Class Action in Oklahoma Over Alleged Spam Texts". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  12. "Sonic TCPA Lawsuit & Fast Food Telemarketing Violations". The Lyon Firm. 27 October 2020. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  13. Mehorter, Kelly (13 January 2023). "Class Action Alleges Sonic Drive-In Sent Illegal Spam Texts". ClassAction. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
  14. Landis, Blake (6 March 2025). "FROM CORN DOGS TO COURTROOMS: Sonic's Texts Might Cost More Than a Combo Meal". The National Law Review. Retrieved 16 March 2026.{{cite web}}: CS1 maint: url-status (link)
Retrieved from "https://consumerrights.wiki/index.php?title=Sonic&oldid=43970"