Credit card information for in-restaurant purchases was scraped from systems.

https://www.infosecurity-magazine.com/news/chilis-fires-up-incident-response/