Sonic Drive-In restaurants suffered a breach in its credit card processing systems, possibly contributing as many as 5 million credit card accounts to a dark web criminal marketplace, according to independent journalist Brian Krebs.

Krebs’s sources purchased samples from a newly listed archive of credit card accounts on an online criminal market. The sample accounts appeared to be linked to recent purchases at Sonic. 

{mosads}

It is unclear if all the credit cards in the archive were stolen from the fast food chain.

A representative from the company told Krebs it is still investigating the extent of the breach. 

The cache of cards is being sold under the name “Firetigerrr” on a popular marketplace at a higher-than-average cost per account, something Krebs chalked up to the freshness of the data for sale.

Prices range from $25 to $50 depending on factors like credit card brand, issuing bank and whether the card is credit or debit.