"McMenamins Data Breach Affects 12 Years of Employee Info"

A ransomware attack faced by the restaurant and hotel chain McMenamins on December 12, 2021, compromised 12 years of internal employee data. The ransomware attack forced the organization to shut down different operations, but its locations can still serve customers. McMenamins has confirmed that the attackers were able to compromise internal data belonging to employees who have worked for the company between January 1, 1998, and June 30, 2010. This set of data includes personal information such as names, home addresses, telephone numbers, email addresses, medical notes, Social Security numbers, income amounts, and more. The attackers could sell or use this data to carry out phishing attacks, commit identity theft, and other malicious activities. McMenamins is offering identity and credit protection services to past and current employees in response to the discovery. The organization has also dedicated a call center to answer questions about the ransomware incident. Letters have been sent to all affected individuals about what information was compromised and how they can protect their identity and credit. This article continues to discuss the impact and perpetrators of the December ransomware attack against McMenamins. 

Threatpost reports "McMenamins Data Breach Affects 12 Years of Employee Info"