gas lines and empty tanks hit some americans hard this month, victims of a ransomware attack on a key fuel pipeline and it's likely to happen again. Are you tracking other groups right now that are offering ransomware for future attacks? Yes, absolutely. Lior divas boston based companies, cyber reason warned last month about the exact group dark side who made and sold the ransomware hackers used to take down the colonial pipeline. Cyber reason says dark side posted sales pitches like this one hackers then by that ransomware and use it to hold infrastructure businesses and consumers hostage. Now, cyber reason sees another ruse posing as a company's help desk in a fake work email and virtually no company deve says is immune any company. We don't believe that they are just focusing on a single specific company. This is not just a normal cyber security threat, it's a plague. It's a key topic at this week's R. S. A. Conference, one of the largest annual cyber gatherings in the world. From, you know, economic nuisance Eight years ago to national security and public health and safety threat. Today, the conference revealed hackers getting greedier. In just one year, ransomware demands doubled from $15 million 30 million. An actual ransom payments nearly tripled. From an average $115,000 to 312,000. Government leaders see the threat growing. We have to collaborate, we have to work better together. Ransomware is lucrative, right? But we keep paying so they keep attacking and that attack we've learned relies on a key weakness. What is the number one risk to companies right now? The human element Masha Sudova, co founder of Elevate Security, a cyber consulting firm contributed to a study released this month that found 85 of all cyber breaches are due to employee errors. The solution Sudova says, work with the riskiest employees who click on suspicious links or are sloppy with passwords and urge them to fess up quickly if they make a mistake. It is embarrassing to say that you might have clicked a link. It is more embarrassing to be the reason that your company ends up on the front page of a newspaper. The human element has been proven to be truly the weakest link. In a joint release about the pipeline ransomware attack. The chairs of two key House committees said quote this attack not only highlights glaring vulnerabilities in our critical infrastructure, it also exposes a marketplace in which it may be easier for a company to pay off a criminal that put resources towards preventing and defending against attacks. In Washington, I'm Chief National Investigative correspondent Mark Albert.
McDonald's becomes latest company hit by data breach
![CNN logo]()
Updated: 8:05 AM PDT Jun 11, 2021
McDonald's is the latest high-profile company to be affected by a data breach, leading to the exposure of private information of customers and employees in South Korea and Taiwan.The burger chain said in a statement Friday that an investigation revealed a "small number of files were accessed," some of which had personal data. McDonald's is contacting affected customers and regulators in the two areas and said that payment information wasn't accessed.The Wall Street Journal, which first reported the news, said that a data breach also affected its operations in the United States. Data that was reportedly accessed included restaurant information, such as square footage, but not "sensitive or personal" customer or employee data.McDonald's credited its "substantial investments" it made on its cybersecurity measures for finding this breach."These tools allowed us to quickly identify and contain recent unauthorized activity on our network," a spokesperson told CNN Business. "A thorough investigation was conducted, and we worked with experienced third parties to support this investigation."In the future, McDonald's will "leverage the findings" from this investigation and further improve its security measures.Other well-known companies have been targeted by hackers and causing data breaches. On Thursday, video game maker Electronics Arts said that hackers broke into its systems and took source code used in its games. JBS USA, a meatpacking company, and Colonial Pipeline have also been affected by similar attacks.
McDonald's is the latest high-profile company to be affected by a data breach, leading to the exposure of private information of customers and employees in South Korea and Taiwan.
The burger chain said in a statement Friday that an investigation revealed a "small number of files were accessed," some of which had personal data. McDonald's is contacting affected customers and regulators in the two areas and said that payment information wasn't accessed.
The Wall Street Journal, which first reported the news, said that a data breach also affected its operations in the United States. Data that was reportedly accessed included restaurant information, such as square footage, but not "sensitive or personal" customer or employee data.
McDonald's credited its "substantial investments" it made on its cybersecurity measures for finding this breach.
"These tools allowed us to quickly identify and contain recent unauthorized activity on our network," a spokesperson told CNN Business. "A thorough investigation was conducted, and we worked with experienced third parties to support this investigation."
In the future, McDonald's will "leverage the findings" from this investigation and further improve its security measures.
Other well-known companies have been targeted by hackers and causing data breaches. On Thursday, video game maker Electronics Arts said that hackers broke into its systems and took source code used in its games. JBS USA, a meatpacking company, and Colonial Pipeline have also been affected by similar attacks.
