McDonald’s Customer Data Compromised Through Contractor

PC World:

McDonald’s is warning customers to be on guard against identity theft, phishing attacks, or other scams thanks to a data breach. What makes the data compromise more concerning is that it is indicative of a growing hacker strategy to go for the low-hanging fruit rather than staging a direct attack.

Hackers did not breach McDonald’s per se. The attackers were able to access the sensitive McDonald’s customer data through a third-party contracted by a third-party contracted by McDonald’s. McDonald’s hired Arc Worldwide to manage its promotional e-mail campaign, and Arc Worldwide hired another third-party to actually distribute the e-mails. That third-party–which remains anonymous–is the one that was hacked. More.

Leave a Comment

Your email address will not be published. Required fields are marked *