Pizza Hut was Hacked and Late Notification Sent

Clients were told on Saturday that Pizza Hut was hacked two weeks ago and their personal information may have been compromised, according to the Charlotte Observer.

According to a customer notice emailed from the pizza chain, those who placed an order on its website or mobile app between the morning of Oct. 1 and midday Oct. 2 might have had their information exposed.

The “temporary security intrusion” lasted for about 28 hours, the notice said, and it’s believed that names, billing ZIP codes, delivery addresses, email addresses and payment card information — meaning account number, expiration date and CVV number — were compromised.

“The security intrusion at issue impacted a small percentage of our customers and we estimate that less than one percent of the visits to our website over the course of the relevant week were affected,” read a customer notice sent only to those affected. “That said, we regret to say that we believe your information is among that impacted group.”

Affected customers are advised to look out for scams asking for personal information because of the hack, as Pizza Hut will not ask you for personal information like your social security number, the company said.

The company is also offering a free credit monitoring service for a year with Kroll Information Assurance, LLC. You have until Jan. 11 to register for the credit monitoring service, the notice said.

 Doug Terfehr, Pizza Hut’s director of communications, told McClatchy in a statement that Pizza Hut worked as quickly as it could to notify customers.

“We take the privacy and security of our customers very seriously and invest in resources to protect the customer information in our care. We value the trust our customers place in us and while we were able to address this incident quickly, we regret that this happened and apologize for any inconvenience this may have caused,” Terfehr said.

Customers were not happy, not because Pizza Hut was hacked, but because of the delay, and they made sure everyone knows what happened on social media.

This is not the first company that takes its time to notify users after Deloitte and Equifax security news this year.

Mohamad El Hout, MBA, M.Eng., CISSP

Mohamad is an entrepreneur and a Senior Security Consultant dealing with the design and delivery of standard and complex security gateway solutions, covering a wide range of cutting edge technologies. His interests include business, technology, leadership, sports, and the continuous pursuit of knowledge.

%d bloggers like this: