/

Pizza Hut Data Breach: What & How It Happened?

Pizza Hut Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In September 2023, Pizza Hut Australia experienced a security incident, with an external group claiming responsibility. The group allegedly accessed some of the company's online storage services and obtained customer information. This incident followed a previous security issue in October 2017, where customer data was compromised during a short period. In both cases, the company faced criticism for their response and communication with customers.

How many accounts were compromised?

The data breach impacted approximately 193,000 customer accounts.

What data was leaked?

The data exposed in the breach included customer names, delivery addresses, email addresses, phone numbers, masked credit card numbers, encrypted account passwords, store IDs, postal addresses, and hashed passwords.

How was Pizza Hut hacked?

The ShinyHunters hacking group breached Pizza Hut Australia's security by gaining unauthorized access to Amazon Web Services buckets used by the pizza chain. The exact methods employed by the hackers remain unclear, as no specific details or mention of malware have been provided.

Pizza Hut's solution

In response to the hacking incidents, Pizza Hut Australia took measures to secure its systems and prevent future breaches. The company immediately secured the compromised system and launched an investigation with the assistance of external cybersecurity experts. Although specific details about the enhanced security measures remain unclear, Pizza Hut Australia notified the Office of the Australian Information Commissioner and alerted impacted customers about the data breaches.

How do I know if I was affected?

Pizza Hut Australia notified customers believed to be affected by the breach. If you're a Pizza Hut Australia customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the appropriate parties.

For more specific help and instructions regarding Pizza Hut's data breach, please contact Pizza Hut support directly.

Where can I go to learn more?

If you want to find more information on the Pizza Hut data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

Pizza Hut Data Breach: What & How It Happened?

Pizza Hut Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In September 2023, Pizza Hut Australia experienced a security incident, with an external group claiming responsibility. The group allegedly accessed some of the company's online storage services and obtained customer information. This incident followed a previous security issue in October 2017, where customer data was compromised during a short period. In both cases, the company faced criticism for their response and communication with customers.

How many accounts were compromised?

The data breach impacted approximately 193,000 customer accounts.

What data was leaked?

The data exposed in the breach included customer names, delivery addresses, email addresses, phone numbers, masked credit card numbers, encrypted account passwords, store IDs, postal addresses, and hashed passwords.

How was Pizza Hut hacked?

The ShinyHunters hacking group breached Pizza Hut Australia's security by gaining unauthorized access to Amazon Web Services buckets used by the pizza chain. The exact methods employed by the hackers remain unclear, as no specific details or mention of malware have been provided.

Pizza Hut's solution

In response to the hacking incidents, Pizza Hut Australia took measures to secure its systems and prevent future breaches. The company immediately secured the compromised system and launched an investigation with the assistance of external cybersecurity experts. Although specific details about the enhanced security measures remain unclear, Pizza Hut Australia notified the Office of the Australian Information Commissioner and alerted impacted customers about the data breaches.

How do I know if I was affected?

Pizza Hut Australia notified customers believed to be affected by the breach. If you're a Pizza Hut Australia customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the appropriate parties.

For more specific help and instructions regarding Pizza Hut's data breach, please contact Pizza Hut support directly.

Where can I go to learn more?

If you want to find more information on the Pizza Hut data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

Pizza Hut Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In September 2023, Pizza Hut Australia experienced a security incident, with an external group claiming responsibility. The group allegedly accessed some of the company's online storage services and obtained customer information. This incident followed a previous security issue in October 2017, where customer data was compromised during a short period. In both cases, the company faced criticism for their response and communication with customers.

How many accounts were compromised?

The data breach impacted approximately 193,000 customer accounts.

What data was leaked?

The data exposed in the breach included customer names, delivery addresses, email addresses, phone numbers, masked credit card numbers, encrypted account passwords, store IDs, postal addresses, and hashed passwords.

How was Pizza Hut hacked?

The ShinyHunters hacking group breached Pizza Hut Australia's security by gaining unauthorized access to Amazon Web Services buckets used by the pizza chain. The exact methods employed by the hackers remain unclear, as no specific details or mention of malware have been provided.

Pizza Hut's solution

In response to the hacking incidents, Pizza Hut Australia took measures to secure its systems and prevent future breaches. The company immediately secured the compromised system and launched an investigation with the assistance of external cybersecurity experts. Although specific details about the enhanced security measures remain unclear, Pizza Hut Australia notified the Office of the Australian Information Commissioner and alerted impacted customers about the data breaches.

How do I know if I was affected?

Pizza Hut Australia notified customers believed to be affected by the breach. If you're a Pizza Hut Australia customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the appropriate parties.

For more specific help and instructions regarding Pizza Hut's data breach, please contact Pizza Hut support directly.

Where can I go to learn more?

If you want to find more information on the Pizza Hut data breach, check out the following news articles: