Hundreds of well-known U.S. restaurants hit by card-stealing malware

News
By published

Bubba Gump, Joe's Crab Shack among dozens of brand names hit

The sign outside a Bubba Gump Shrimp Co. restaurant at the Universal Studios Hollywood theme park in Universal City, California.
The sign outside a Bubba Gump Shrimp Co. restaurant at the Universal Studios Hollywood theme park in Universal City, California. (Image credit: Pe3k/Shutterstock)

Landry's, a Houston-based owner and operator of restaurant chains across North America, kicked off the New Year by disclosing Tuesday (Dec. 31) that its payment systems had been infected by credit-card-stealing malware for most of 2019.

However, the malware could have stolen the card data only if waitstaff mistakenly ran customer credit cards through restaurant food-and-drink order-placement systems instead of credit-card readers, Landry's said in a notice posted on the company website

Both systems allow waitstaff to swipe magnetic-stripe cards through card readers, but Landry's said no card numbers could have been stolen from its payment-card system despite the infection. Landry's implemented a fully encrypted payment-card system in 2016 following an earlier spate of payment-card theft, according to the Houston Chronicle.

"The general timeframe when data from cards mistakenly swiped on the order-entry systems may have been accessed is March 13, 2019 to October 17, 2019," the company notice states. "At a small number of locations, access may have occurred as early as January 18, 2019."

What to do

The company did not estimate how many customer credit and debit cards may have been compromised, but anyone who dined or drank at a Landry's-owned establishment during that time period should check their card statements and immediately report anything unusual to the card issuer. 

Landry's operates establishments under 60-odd brand names, including The Boathouse, Blue Water Grill, Bubba Gump Shrimp Company, Claim Jumper, Del Frisco's Double Eagle Steak House, Del Frisco's Grille, Dos Caminos, Joe's Crab Shack, McCormick & Schmick's, Mitchell's Fish Market, Morton's The Steakhouse, Rainforest Cafe and Vic & Anthony's Steakhouse. It also operates the Golden Nugget casinos in Las Vegas, Atlantic City, Laughlin, Nevada and Lake Charles, Louisiana. A full list of Landry's properties is here.

Concerned customers can call Landry's toll-free at 1-833-991-1538 from 8:00 a.m. to 8:00 p.m. Central Standard Time, Monday through Friday. The company has not said whether it will offer identity-protection services to affected customers.

See more Computing News
TOPICS
Paul Wagenseil
Paul Wagenseil

Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.

Latest in Malware & Adware
A person trying to set up a new Wi-Fi router
Thousands of TP-Link routers have been infected by a botnet to spread malware
A smartphone screen displaying the Android name and logo next to a sign reading 'MALWARE'.
Fake Google Play Store pages are spreading Trojan malware that can steal your financial data
Green skull on smartphone screen.
Over 1 million Android devices infected with password-stealing, pre-installed botnet malware — how to stay safe
Green skull on smartphone screen.
This Android banking trojan steals passwords to take over your accounts — and all it takes is a single text message
PayPal logo on iPhone
Watch out! Scammers are using this PayPal setting to take over your PC
A laptop displaying the Chrome logo
Don't click this — malicious ads impersonating Google Chrome spreading dangerous malware
Latest in News
NYTimes Connections
NYT Connections today hints and answers — Sunday, March 16 (#644)
Nintendo Switch 2
New Nintendo Switch 2 FCC filing suggests this beloved Nintendo controller could make a comeback
(From L to R) Rohan (Nik Dodani), Josh (Brandon Flynn), Dorothy (Edie Falco), John (Dean Norris), and Liddie (Lisa Kuthrow) in The Parenting
Max top 10 movies — here’s the 3 worth watching right now
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #378 (Sunday, March 16 2025)
Samsung Galaxy Tab S10 FE renders
Samsung Galaxy Tab S10 FE price leak is bad news for budget-conscious buyers
Google Assistant
Gemini to kill off Google Assistant on most Android phones — here's what you need to know
More about malware adware
A hacker typing quickly on a keyboard

Hackers are using this little-known file type to drop a nasty Windows worm on vulnerable PCs — how to stay safe
Malware

1.2 million people fooled by fake MidJourney Facebook page used to spread malware — don’t fall for this
NYTimes Connections

NYT Connections today hints and answers — Sunday, March 16 (#644)
See more latest
Most Popular
NYTimes Connections
NYT Connections today hints and answers — Sunday, March 16 (#644)
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #378 (Sunday, March 16 2025)
Nintendo Switch 2
New Nintendo Switch 2 FCC filing suggests this beloved Nintendo controller could make a comeback
(From L to R) Rohan (Nik Dodani), Josh (Brandon Flynn), Dorothy (Edie Falco), John (Dean Norris), and Liddie (Lisa Kuthrow) in The Parenting
Max top 10 movies — here’s the 3 worth watching right now
In court in Dedham, Massachusetts. (From left) Attorney Emily Little, Karen Read and attorney David Yannetti
How to watch 'A Body in The Snow: The Trial of Karen Read' from anywhere online
MacBook Air M4
MacBook Air M4 teardown reveals familiar repairability pain points
Google Assistant
Gemini to kill off Google Assistant on most Android phones — here's what you need to know
Samsung Galaxy Tab S10 FE renders
Samsung Galaxy Tab S10 FE price leak is bad news for budget-conscious buyers
Electric State; Moana; I'm Still Here
5 best new movies to stream this weekend on Netflix, Max, Disney Plus, and more
Joaquin Phoenix as Beau in Beau is Afraid
Joaquin Phoenix's divisive dark comedy arrives on Max — and I can't stop thinking about it