HQ/EMEAFind out how we can help your business
The infamous Lockbit ransomware claimed to have targeted Subway, the American multinational fast-food giant. The cyber threat group has issued a strict deadline, giving Subway until February 2, 2024, to respond to their demands.
Lockbit announced their successful breach via a post on their leak site, accusing the fast-food giant of allegedly downplaying the severity of the attack. According to the post, Subway is “pretending that nothing happened,” despite Lockbit successfully infiltrating the company’s SUBS internal system.
Hundreds of gigabytes have allegedly been stolen from Subway, which holds a substantial volume of sensitive corporate data.
The compromised system reportedly contains a staggering amount of sensitive data, comprising hundreds of gigabytes. Among the pilfered information are critical financial aspects of Subway’s franchise operations, including employee salaries, franchise royalty payments, master franchise commission payments, restaurant turnovers, and more.
Lockbit, known for its ruthlessness in previous attacks, has given the company a two-week window to engage in communication and safeguard its stolen data. The group’s post suggests a willingness to reach a deal, indicating that they are open to negotiation with the fast-food giant. However, should Subway fail to respond by the specified deadline, Lockbit threatens to auction off the stolen data to the highest bidder, potentially exposing Subway’s internal workings to competitors.
This development was made public through the threat group’s announcement on January 21, 2024. If confirmed true, the ransomware attack not only puts the fast-food giant’s financial stability at risk but also raises concerns about the safety and security of sensitive information pertaining to employees and franchisees.
As Subway is expected to work urgently to strengthen its cybersecurity and address Lockbit’s ultimatum, the incident highlights the growing threat of cybercrime in our interconnected world. The implications of this breach go beyond Subway’s immediate challenges, underscoring the importance for businesses in various industries to enhance their cybersecurity measures against evolving threats.
