The iconic US network’s announcement of “recent unauthorized activity on our network” comes amid a wave of cyberattacks around the world targeting everything from meatpacking plants to pipelines and utilities, some of which have had to pay ransoms to hackers.
“While we were able to quickly close access after identification, our investigation has determined that a small number of files were accessed, some of which contained personal data,” McDonald’s said in a statement.
However, the files accessed did not contain information on customer payments, nor were operations disrupted, the company said.
“According to our investigation, only Korea and Taiwan had access to customers’ personal data, and will take steps to notify regulators and customers listed in these files.”
The company said it had worked with “experienced third parties” to investigate the breach, but did not provide details on the scale of the attack.
“Some additional markets will take steps to address files containing employee personal data,” McDonald’s said, without elaborating.