Security News > 2021 > June > McDonald's suffers cyberattack in US, South Korea and Taiwan
The restaurant chain reportedly said no U.S. customer data was exposed and the attack did not involve ransomware.
McDonald's is the latest company to fall victim to a cyberattack exposing customer and other data in the U.S., Taiwan and China, The Wall Street Journal has reported.
No U.S. customer data was breached, McDonald's told The WSJ, and the data of employees that was exposed was not sensitive or personal.
U.S. employees were told in an email that the breach exposed some U.S. business contact information and franchise data.
Personal data of customers in Korea and Taiwan were reportedly accessed, as well as employee names and contact information in Taiwan.
"Roger Hale, CSO of BigID, called the McDonald's data breach very limited and said it was an exfiltration of customer delivery data and employee contact data."These data types would not usually be kept in the same business systems, with the exception being unstructured data, which most security professionals will tell you is more difficult to protect as collaboration tools are designed specifically to 'share' data,'' Hale said.
News URL
Related news
- N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks (source)
- US critical infrastructure cyberattack reporting rules inch closer to reality (source)
- Kremlin's Sandworm blamed for cyberattacks on US, European water utilities (source)
- US govt sanctions Iranians linked to government cyberattacks (source)
- Kimsuky hackers deploy new Linux backdoor in attacks on South Korea (source)