McDonald’s has suffered from a data breach that possibly exposed some U.S. business information, customer data in South Korea and Taiwan.
McDonald’s said that it had already hired external consultants to assess any activities or damages on its internal security system after unauthorized access was detected last week.
McDonald’s said that the company data that had been breached involved the U.S., South Korea, and Taiwan operations.
Among the data stolen were business contact information for U.S. employees and franchisees, along with some information about restaurant seating capacity and the square footage of play areas.
McDonald’s reassured that customer data was not breached for U.S. operations and that the employee data exposed wasn’t sensitive or personal.
Customer emails, phone numbers, and addresses for delivery customers in South Korea and Taiwan however, were stolen along with employee information including names and contact information.
McDonald’s said that the stolen data was only minimal but did not specify and that affected partners have been notified along with employees in South Africa and Russia who might have been possibly affected by the breach.
According to McDonald’s, restaurant operations were unaffected, and that no ransom was given.
There are no details yet on which cyber actor conducted the McDonald’s attack.