Pizza Hut Australia is sending data breach notifications to clients, warning {that a} cyberattack allowed hackers to entry their private data.
The notification warns that the hacker gained unauthorized entry to Pizza Hut Australia methods storing delicate information for purchasers who made on-line orders, in addition to partial monetary knowledge and encrypted account passwords.
“We turned conscious in early September of a cyber security incident the place an unauthorized third occasion accessed a number of the firm’s knowledge,” reads the discover despatched to clients.
“Now we have confirmed that the information impacted pertains to buyer report particulars and on-line order transactions held on our Pizza Hut Australia buyer database.”
The knowledge that has been uncovered to the community intruders contains the next:
- Full title
- Supply tackle
- Supply directions
- Electronic mail tackle
- Telephone quantity
- Masked bank card knowledge
- Encrypted passwords for on-line accounts
The restaurant chain, which operates in 260 places in Australia, says recipients of its notices “could want to take into account” updating their password regardless of being “one-way encrypted” within the database.
Furthermore, the discover urges clients to remain vigilant for phishing assaults and suspicious hyperlinks despatched to them by way of unsolicited communications.
In the end, Pizza Hut says the incident solely impacts a small variety of its clients, and the Workplace of the Australian Info Commissioner (OAIC) has been absolutely knowledgeable in regards to the state of affairs.
The precise variety of impacted clients was disclosed by way of an announcement from a Pizza Hut spokesperson to The Guardian, stating that the incident affected 193,000 folks.
Previous incidents
Firstly of September 2023, DataBreaches reported that the infamous knowledge dealer ‘ShinyHunters’ made claims about stealing the information of 1 million clients of Pizza Hut Australia.
The risk actor alleged they gained entry by way of an unprotected Amazon Internet Companies (AWS) endpoint between July and August 2023, accessing a database with 30 million orders.
Pizza Hut Australia by no means responded to those allegations, so it’s unclear whether or not the 2 incidents are in any manner associated.
Earlier this 12 months, in January 2023, the proprietor of Pizza Hut, Yum! Manufacturers, was focused by a ransomware assault that compelled the closure of 300 places in the UK.
In April 2023, the agency confirmed that the risk actors had stolen worker data from its networks, albeit it discovered no proof that clients have been affected by the data breach.
