Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense

IOTW: McDonald's Cyber Attack Targets Data

Add bookmark
Lisa Morgan
Lisa Morgan
06/18/2021

McDonald's is the latest high-profile business to be hit by a cyber attack. Last week's exploit successfully penetrated the company's systems, enabling the hackers to steal data from its U.S., South Korean and Taiwanese businesses, according to the Wall Street Journal which broke the story. McDonald's subsequently hired third-party consultants to help with forensic work. It was they who identified what type of data was stolen from where.

Apparently, the company notified Asian regulators a week following the discovery of the exploit. Meanwhile, the company continued to operate as normal.

The Facts

On June 4, McDonald's was the victim of a successful cyber attack involving the exfiltration of data. Reportedly, business data was siphoned in the U.S. including information about U.S. employees and franchisees. However, in South Korea and Taiwan, customers' email addresses, physical addresses and phone numbers were compromised. Also in Taiwan, some employees' names and contact information was compromised.

McDonald's reportedly said that the scope of the information leak was "small" and that it had hired outside consultants after it identified unauthorized access to one of the internal security systems.

McDonalds credited its cybersecurity investments for allowing the company to identify and respond to the threat as quickly as it did. However, it took the company one week to stop the unauthorized access to the data. The company also acknowledged that it needs to fortify its cyber security fabric. In the meantime, it is notifying regulators and Asian customers whose information was stolen.

The attack did not involve ransomware. However, McDonalds is warning people to be vigilant about potential phishing campaigns.

Lessons Learned

No amount of cyber security investments will protect a company from all possible incidents. It's a people, process and technology issue which is constantly evolving. As a result, security fabrics are becoming more complex, necessitating better end-to-end visibility and the ability to react faster. 

More fundamentally, CISOs and security professionals need to be thinking in multiple dimensions including core, edge, network, proactive, reactive, firmware, applications, containers, internal and external threats, permissions, authorization, authentication and the company's ongoing cyber risk awareness requirements. 

In this case, the attack was launched from an internal security system, though the root cause of the issue has not been reported.

Quick Tips

Every high-profile exploit should serve as a reminder that even big companies with deep pockets also have inadequate security controls. These types of events present a "teaching moment" in which security professionals should scrutinize their own systems and non-security professionals should be reminded of good cyber hygiene practices.

  • Cyber security assessments should be ongoing.
  • In addition to protecting hardware, software and network assets, their interconnections and data sharing should be well-understood and also hardened.
  • Make sure your incident response plan is up to date
  • Make sure that permissions for former employees have been deactivated.
  • Remind employees what they can to do avoid or minimize the possibility of falling victim to phishing and malwarewhat to do and what not to do.
  • Remind the security team that even security products can be compromised.
Tags: Cyber attack Cyber investment Malware McDonalds Data McDonalds data breach McD Cyber Targets for cyber security threats McDonalds security
info@cshub.com/r/n

We hope you enjoy All Access from CS Hub!!<\/p>\r\n<p>Best Regards,<\/p>\r\n<p><a href=https://www.cshub.com/"https:////www.cshub.com///" target=\"_blank\">CS Hub Team<\/a><\/p>\r\n<p>P.S. Be sure to check out our other upcoming <a href=https://www.cshub.com/"https:////www.cshub.com//events?filter_format=ONLINE\%22 target=\"_blank\">All Access events here<\/a>.<\/p>\r\n<p>--------------------------------<\/p>\r\nConnect with us on Social Media: <a href=https://www.cshub.com/"https:////www.linkedin.com//groups//12067996///" target=\"_blank\">LinkedIn<\/a> | <a href=https://www.cshub.com/"https:////twitter.com//CSHubUSA/" target=\"_blank\">Twitter<\/a><\/p>\r\n<p>--------------------------------<\/p>\r\n<p>FAQS<\/p>\r\n<p><b>Can I invite my colleagues?<\/b><br>Yes of course! Please send them this link so they can register for free! [WebUrl]<\/p>\r\n\r\n<p><b>How do I access the sessions?<\/b><br>\r\nAll Access is run on Zoom Events. You should receive an email shortly from Zoom Events with your unique All Access link to the event lobby. Please hold on to that email ahead of the event. We\u2019ll also send you a reminder 24 hours before we go live!<\/p>\r\n\r\n<p><b>Will the agenda be updated?<\/b><br>\r\nYes, the agenda will be continuously updated on the website with the latest sessions & speakers. As we get closer to the event, also look out for our weekly updates which will also include the latest updates information and link to access the event.<\/p>\r\n<p><b>Can I access the sessions On Demand?<\/b><br>\r\nEvery session will be available after the event via the event lobby. We\u2019ll also send you a reminder about the On Demand sessions which will be sent to you after the event is over.<\/p>\r\n<p>--------------------------------<\/p>\r\n<p>RELATED RESOURCES TO READ BEFORE YOUR EVENT<\/p>\r\n<ul>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//executive-decisions//reports//cs-hub-mid-year-market-report-2022?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CS Hub Mid-Year Market Report 2022<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//ciso-strategies-for-proactive-threat-prevention?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CISO strategies for proactive threat prevention<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//how-to-strengthen-email-security-and-protection-against-advanced-ransomware-attacks?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">How to strengthen email security and protection against advanced ransomware attacks<\/a><\/li>\r\n<\/ul>","event_registration_srs_confirmation_email":null,"assets_from_cdn":true},"bant_disabled":0,"sponsorship_disclaimer":null,"sponsorship_disclaimer_text":null,"sponsorship_disclaimer_checkbox_disabled":0,"ext_treat_id":null,"recording_url":null,"file_attachment":null,"ingo_enabled":null,"ingo_activator_id":null,"ingo_autofiller_id":null,"ingo_amplifier_id":null,"ingo_authorizer_id":null,"restricted_content":0,"featured_events_embedded":[],"featured_content_embedded":[],"featured_content_portal_embedded":null}" >

FIND CONTENT BY TYPE

News Case Studies Interviews White Papers Videos

Cyber Security Hub COMMUNITY

About Us Power10 Contact Us Advertise with us Cookie Policy User Agreement Become a Contributor All Access from CS Hub Become a Member Today Media Partners

ADVERTISE WITH US

Advertise Now

JOIN THE Cyber Security Hub COMMUNITY

Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.

Cyber Security Hub, a division of IQPC

© 2026 All rights reserved. Use of this site constitutes acceptance of our User Agreement, Privacy Policy and Cookies Settings.

Careers With IQPC | Contact Us | About Us | Cookie Policy