Fast food mega chain McDonald’s is the latest company to have private data stolen by a third party, The Wall Street Journal reports. Contrary to other recent attacks on CNA Financial and the Colonial Pipeline, McDonald’s claims it is not related to ransomware, but that store information was stolen in the US, along with some customer information in South Korea and Taiwan.
The company discovered the data breach after it hired consultants to “investigate unauthorized activity on an internal security system,” McDonald’s tells the log. In the US, data accessed included business contact information for franchises, store capacity, and playroom square footage. The South Korean and Taiwanese branches of McDonald’s “had access to customer personal information” and the company “will take steps to notify regulators and customers identified in these files,” the company said. The edge. McDonald’s stressed that “no customer payment information was included in these files.”
McDonald’s says its operations were not disrupted by the data breach and “in the coming days, a few additional markets will take steps to address files containing employee personal data.” The Wall Street Journal writes that these other markets include South Africa and Russia, both of which were highlighted in the security consultants’ initial survey.
A non-payment breach from a restaurant chain like McDonald’s isn’t as catastrophic as someone swiping credit cards or shutting down one of the world’s largest beef suppliers, but it’s yet another example of how big companies are also making big, often easy targets for hackers. .