The fast food mega chain McDonald’s is the latest company to have private data stolen by a third party, The Wall Street Journal reports. Unlike other recent attacks on CNA Financial and the Colonial Pipeline, McDonald’s claims it isn’t dealing with ransomware, but store information in the US was taken, along with some customer information in South Korea and Taiwan.
The company discovered the data breach after hiring consultants to “investigate unauthorized activity on an internal security system” McDonald’s tells the Journal. In the US, the data accessed included business contact information for franchises, the seating capacity of stores, and the square footage of play areas. The South Korean and Taiwanese arms of McDonald’s “had customer personal data accessed” and the company “will be taking steps to notify regulators and customers listed in these files,” the company tells The Verge. McDonald’s stressed that “no customer payment information was contained in these files.”