CCC Restaurant Enterprises, LLC

CCC Restaurant Enterprises, LLC operates quick-service restaurants under the Popeyes brand. Its core business involves preparing and serving food to customers at physical restaurant locations. The company handles customer payment card transactions as part of its standard point-of-sale operations, indicating involvement in retail food service within the United States. The incident report confirms activity in specific states, demonstrating a presence in Texas, North Carolina, and Georgia, though the full geographic scope beyond these affected locations is not detailed in the provided source material.

The organisation experienced a significant cybersecurity incident involving malware that compromised payment card data at ten of its Popeyes restaurant locations. This breach occurred over a period beginning on May 5, 2016, and resulted in the exposure of customer cardholder names, card numbers, expiration dates, and security codes processed during the affected timeframe. The company initiated an investigation following the detection of unusual activity reported by its credit card processor. Third-party forensic experts were engaged to identify and remove the malware from the compromised systems. CCC Restaurant Enterprises implemented measures to secure customer data and prevent future incidents, confirming that payment cards used after the malware was contained were no longer at risk. A dedicated assistance line was established to address customer inquiries related to the breach.