Cyber Incident Victim: Landry's Inc.

In December 2015, banking industry fraud analysts identified patterns of unauthorized credit card activity linked to Landry’s Inc., a Houston-based hospitality company operating over 500 restaurant properties including Bubba Gump Shrimp Co., Claim Jumper, McCormick & Schmick’s, Morton’s The Steakhouse, Landry’s Seafood, Chart House, and Rainforest Cafe. KrebsOnSecurity reported on December 17 that financial institutions traced fraudulent charges back to cards previously used at Landry’s establishments, indicating a potential breach. Banking sources estimated the card compromise began in May 2015 and might have remained active at some locations at the time of reporting. Landry’s confirmed an investigation that same day, issuing a press release and publishing an online FAQ acknowledging reports of unauthorized charges following legitimate card usage at its restaurants. The company stated it had not yet determined the number of affected properties or the full scope of the incident.

Attackers targeted Landry’s point-of-sale (POS) systems, exploiting security vulnerabilities to install malware designed to harvest payment card data. This method aligned with broader criminal patterns of compromising restaurant payment environments, which historically prioritized operational convenience over robust security controls. Stolen card data was subsequently encoded onto counterfeit cards and used for fraudulent purchases at major retailers, including Best Buy and Target. Multiple banking sources confirmed observing fraudulent transactions at big-box stores exclusively on cards with prior legitimate use at Landry’s locations. The incident underscored the persistent targeting of hospitality sector POS infrastructure by financially motivated threat actors seeking card-present transaction data for monetization through physical counterfeit card schemes. Landry’s investigation remained ongoing with no further public details disclosed in the immediate aftermath of the initial acknowledgment.