McDonald’s hit by data hack in latest high profile attack
Customer and employee information impacted
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.McDonald’s has revealed that its systems were hacked in countries that include the United States, Taiwan, and South Korea – impacting customer and employee information, The Wall Street Journal reports.
The hack was discovered after the burger chain hired external consultants to investigate unauthorised activity on an internal security system. During the investigation, the consultants found the company’s data was breached.
No customer data was breached in the US, McDonald’s said to its employees, but hackers did retrieve business contact information for employees and franchises. Employee data that was exposed to the hackers was not sensitive or personal, the company said.
Hackers also obtained information about specific restaurants, such as their seating capacity and square footage.
In the South Korea and Taiwan markets, customers’ personal data was accessed by the hackers.
McDonald’s said on Friday that it would now work to notify customers who were directly impacted by the data hack, but no payment information was accessed by the hackers.
“Moving forward, McDonald’s will leverage the findings from the investigation as well as input from security resources to identify ways to further enhance our existing security measures,” the company said in a statement to The Independent.
Several major industries have been hit with cyberattacks in recent months, causing concern about the impact hackers could have on critical infrastructure.
Colonial Pipelines, the Georgia-based company responsible for providing the US East Coast with 45 per cent of its fuel, made headlines after a ransomware attack in May left the company’s operating systems offline for multiple days.
The shutdown caused fuel prices to soar and panic buying from residents living in the impacted states.
Russia-based hacking group DarkSide was responsible for the attack, and they initially obtained a $4.4m ransom in Bitcoin from Colonial Pipelines to unscramble their operating systems.
It was revealed this week that the FBI recaptured a majority of the ransom paid to DarkSide.
JBS, the world’s largest beef supplier, was also hit with a ransomware attack that involved hackers breaching the company’s computer system.
McDonald’s said its data breach was not a ransomware attack, meaning no ransom was paid to hackers in order to restore impacted systems.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments