Yum! Brands, the brand owner of fast food chains KFC, Pizza Hut and Taco Bell, is now sending data breach notification letters to an undisclosed number of people whose personal information was stolen in a ransomware on January 13.

It comes after the company said that although some data was stolen from its network, it has no evidence the attackers exfiltrated customer information.

In the breach notification letters sent to those concerned from Thursday, Yum! Brands revealed that she has now discovered that the attackers stole some people’s personal information, including names, driver’s license numbers and other ID card numbers.

However, he did not specify whether the stolen information belonged to employees or customers and has not yet revealed the exact number of people affected by this data breach.

“We are writing to provide you with information about a cybersecurity incident involving your personal information that occurred in mid-January 2023,” Yum! The brands said.

“Our review has determined that the exposed files contain some of your personal information, including [Name or other personal identifier in combination with: Driver’s License Number or Non-Driver Identification Card Number].”

The company also added that the ongoing investigation found no evidence that the stolen data was used for identity theft or fraud.

Around 300 restaurants closed in the UK

A direct result of January’s ransomware attack, Yum! Brands was forced to close around 300 restaurants in the UK.

“On January 18, 2023, we announced a ransomware attack that impacted certain IT systems, resulting in the closure of less than 300 restaurants in a market for one day, temporarily disrupting some of our affected systems and resulting in the removal of data from our network.” the company said in its annual report 2022 filed with the U.S. Securities and Exchange Commission (SEC) on Friday.

“We have incurred, and may continue to incur, certain expenses related to this attack, including expenses to respond to, remediate and investigate this matter.”

In a January filing with the US SEC, Yum! The brands also assured investors that the ransomware attack would not result in any noticeable negative financial impact.

“While this incident caused a temporary disruption, the Company is not aware of any other restaurant disruptions and does not expect this event to have a material adverse impact on its business, operations or financial results. “, said the company. SEC report bed.

Yum! Brands and its subsidiaries operate or franchise more than 55,000 restaurants in 155 countries and territories with the help of approximately 36,000 employees global.

A yum! Brands’ spokesperson was not immediately available for comment when contacted by BleepingComputer earlier today for more information about the ransomware attack and the number of people (employees or customers) affected by it. this data breach.



Source link