Fast food mega-chain McDonald’s is the latest company to steal private data from a third party, Wall Street Journal reports. Unlike other recent attacks on CNA Financial and Colonial Pipeline, McDonalds claims it does not deal with ransomware, but stock information was taken in the US along with some customer information in South Korea and Taiwan.
The company discovered the data breach after hiring consultants to “investigate unauthorized activity on an internal security system” McDonald’s says Journal. In the United States, the available data included business contact information for franchises, business seating capacity, and square footage of playgrounds. The South Korean and Taiwanese arms at McDonald̵
McDonald’s says business operations were not disrupted by the data breach, and “in the coming days, a few additional markets will take steps to address files containing employees’ personal data.” Wall Street Journal writes these other markets include South Africa and Russia, both of which were highlighted in the security consultants’ initial survey.
A breach of missing payment data from a restaurant chain like McDonald’s is not as catastrophic as someone pulling a credit card or closing one of the world’s largest beef suppliers, but it’s another example of how large companies also set large, often light targets hackers.