According to The Wall Street Journal, McDonald’s is the latest firm to have confidential data hacked by a third party. McDonald’s claims it isn’t dealing with ransomware, unlike other recent assaults on CNA Financial and the Colonial Pipeline, but store information in the United States, as well as certain customer information in South Korea and Taiwan, was taken.
According to the Journal, McDonald’s found the data breach after hiring consultants to “examine unlawful activities on an internal security system.” In the United States, the information obtained included franchise contact information, store seating capacity, and play area square footage.
McDonald’s’ South Korean and Taiwanese operations “had customer personal data accessed,” according to the business, which “will be taking steps to alert regulators and customers listed in these files.” “No consumer payment information was stored in these files,” McDonald’s said.
The data breach did not disrupt McDonald’s operations, and “in the coming days, a few additional markets will take steps to remediate files that contained employee personal data,” according to the company.
These other markets, according to the Wall Street Journal, include South Africa and Russia, both of which were detected in the security consultants’ initial examination.
A breach of non-payment data from a restaurant chain like McDonald’s isn’t as bad as someone stealing credit cards or shutting down one of the world’s major beef suppliers, but it’s another reminder of how big businesses make big, easy targets for hackers.