Krispy Kreme Doughnut Corporation has admitted to a cybersecurity breach that left customers unable to order online. The company, known for its signature glazed doughnuts, filed a 8-K report on November 29, revealing unauthorized access to a portion of its IT systems. Krispy Kreme’s security team worked with “leading cybersecurity experts” to contain and remediate the incident.
The breach is expected to have a material impact on the company’s results of operations and financial condition, although the exact nature of the attack remains unclear. Krispy Kreme declined to comment on whether it was a ransomware attack or data theft, but assured customers that its cybersecurity insurance will help offset the costs.
Customers are advised to check their credit cards associated with their online accounts for any suspicious activity. The incident highlights the importance of cybersecurity awareness and vigilance during holidays when IT staff may be less available to respond to incidents.
Source: https://www.theregister.com/2024/12/11/krispy_kreme_cybercrime