McDonald's, the largest fast-food chain globally, has disclosed a data breach after hackers breached its systems and stole information belonging to customers and employees from the US, South Korea, and Taiwan, according to the National Management Centre.
As the world's leading global foodservice retailer, McDonald's serves almost hundreds of millions of customers every day in more than 39,000 locations in over 100 countries, including almost 1,300 restaurants in the UK, and a staggering 14,000 restaurants in the United States.
Given the enormity of McDonald’s, this data breach has gathered a lot of outside attention both within the fast-food industry and beyond. It must be noted that this is not the first time there has been a large-scale data breach at the company, when in 2017 plaintext passwords and usernames were leaked worldwide.
This data breach was different to the one witnessed in 2017 as it affected employees as well as customers. However, only in the US was employee data obtainable by threat actors, where McDonald’s confirmed that the information was not personal or sensitive.
What is most worrying for the global giant is the vast array of data stolen from customers abroad (South Korea and Taiwan). This data included names, emails, phone numbers, and addresses. This was by far the most sensitive data contained within the leak and the number of customers directly affected is yet unknown.
McDonald’s did confirm that no payment details were among the breach.
All customers affected by the breach will be contacted by official means by McDonald’s in due course.
Report all Fraud and Cybercrime to Action Fraud by calling 0300 123 2040 or online. Forward suspicious emails to firstname.lastname@example.org. Report SMS scams by forwarding the original message to 7726 (spells SPAM on the keypad).