HQ/EMEAFind out how we can help your business
Panda Restaurant Group confirms a data breach incident that occurred in March after threat actors acquired access to its corporate systems. The breach has enabled the attackers to harvest personal information owned by an undetermined number of individuals.
Earlier this year, the company uncovered a data security breach that impacted some of its corporate systems while leaving in-store systems, operations, and guests undisrupted. Reports stated that the incident only affected current and former associate data, and the attackers had not compromised guest data.
The security team of the Panda Restaurant Group has quickly isolated affected environments to prevent the attackers from compromising more systems.
The Panda Restaurant Group immediately secured its environment, activated repair and recovery activities, and launched a thorough investigation with the help of law enforcement authorities to determine the damage and nature of the attack.
According to investigations, the attackers accessed certain information that the company maintained in their corporate systems between March 7 and 11 this year. After the investigation concluded last month, the company confirmed that the data breach had compromised the personal information of various individuals relevant to the restaurants. However, they have yet to uncover the exact number of affected parties.
According to material filed by the company with the Maine Attorney General’s Office, the perpetrators of the data breach acquired people’s names or other personal identifiers and driver’s license or non-driver identity card numbers. Panda has yet to reveal the number of people whose personal information was compromised or stolen in the incident.
On the other hand, they assured everyone they would continue working with law enforcement to investigate the unauthorised actor responsible for this incident. Furthermore, Panda implemented additional technical defences to enhance the security of information in their possession and help prevent similar events from happening again.
The Panda Restaurant Group has not yet responded to any requests from various concerned individuals for more information about the incident.
Potentially impacted users should be cautious with their digital presence and refrain from accessing unsolicited communications, as the attackers could use the stolen details to execute other cybercriminal operations, such as phishing.
