Yum! Brands, the owner of KFC, Pizza Hut, Taco Bell, and The Habit Burger Grill was apparently hit with a ransomware attack in January 2023.
Shortly after the attack, which also forced 300 UK stores to close, the US owners said that although some data was stolen from its network, it has no evidence that the attackers exfiltrated any customer information.
Now though, the company is sending data breach notification letters to an undisclosed number of individuals whose personal information was stolen .
In the breach notification letters which have been sent out to affected customers, Yum! Brands revealed that they have now identified that the attackers stole some personal information.
The company has stressed that the ongoing investigation had not found any evidence that the stolen data has been used for identity theft or fraud.
As with many such cases, Yum! did not go public with their findings relating to the security breach until they had published their K-8 report with the Securities and Exchange Commission (SEC). At which point the company said that “Although data
was taken from the Company’s network and an investigation is ongoing, at this stage, there is no evidence that customer databases were stolen” – well, now we know that some data was stolen.
Hopefully the attackers managed to get that all important recipe of those 11 herbs and spices – I could just do with that to make my own KFC in my air-fryer!