Pizza Hut Australia is sending information breach notifications to prospects, warning {that a} cyberattack allowed hackers to entry their private info.
The notification warns that the hacker gained unauthorized entry to Pizza Hut Australia programs storing delicate data for patrons who made on-line orders, in addition to partial monetary information and encrypted account passwords.
“We turned conscious in early September of a cyber safety incident the place an unauthorized third social gathering accessed a number of the firm’s information,” reads the discover despatched to prospects.
“Now we have confirmed that the info impacted pertains to buyer document particulars and on-line order transactions held on our Pizza Hut Australia buyer database.”
The data that has been uncovered to the community intruders consists of the next:
- Full title
- Supply deal with
- Supply directions
- Electronic mail deal with
- Telephone quantity
- Masked bank card information
- Encrypted passwords for on-line accounts
The restaurant chain, which operates in 260 places in Australia, says recipients of its notices “might want to contemplate” updating their password regardless of being “one-way encrypted” within the database.
Furthermore, the discover urges prospects to remain vigilant for phishing assaults and suspicious hyperlinks despatched to them by way of unsolicited communications.
In the end, Pizza Hut says the incident solely impacts a small variety of its prospects, and the Workplace of the Australian Data Commissioner (OAIC) has been totally knowledgeable in regards to the scenario.
The precise variety of impacted prospects was disclosed by way of an announcement from a Pizza Hut spokesperson to The Guardian, stating that the incident affected 193,000 individuals.
Previous incidents
At first of September 2023, DataBreaches reported that the infamous information dealer ‘ShinyHunters’ made claims about stealing the info of 1 million prospects of Pizza Hut Australia.
The risk actor alleged they gained entry by way of an unprotected Amazon Internet Providers (AWS) endpoint between July and August 2023, accessing a database with 30 million orders.
Pizza Hut Australia by no means responded to those allegations, so it’s unclear whether or not the 2 incidents are in any approach associated.
Earlier this yr, in January 2023, the proprietor of Pizza Hut, Yum! Manufacturers, was focused by a ransomware assault that pressured the closure of 300 places in the UK.
In April 2023, the agency confirmed that the risk actors had stolen worker info from its networks, albeit it discovered no proof that prospects have been affected by the info breach.
