Jollibee Foods Corporation (JFC), the leading fast-food chain operator in the Philippines, has launched an investigation into an alleged data breach in its system that potentially impacted millions of customers worldwide. The probe was initiated following a claim by a threat actor named “Sp1d3r” who asserted responsibility for breaching Jollibee Foods Corporation’s systems.
According to a report by The Cyber Express on June 21, the attacker offered to sell the sensitive data of 32 million Jollibee customers on the dark web for $40,000. This news has raised concerns among both Jollibee and its customers about the security of their personal information and data.
To address the cybersecurity incident, JFC released a statement on June 22 confirming the breach and stating that the company, along with its subsidiaries, was taking measures to address the situation. The company assured the public that it was working with relevant authorities and experts to investigate the matter further and enhance its security protocols to protect data from future threats.
Despite the cyberattack, JFC emphasized that its e-commerce platforms and subsidiaries remained unaffected and operational. The company reiterated its commitment to prioritizing the protection and confidentiality of stakeholders’ personal information, including customer data, and continually strengthening its defenses against potential cyber threats.
In response to the breach, Jollibee urged the public to remain vigilant and practice good information security habits, such as securing passwords and regularly changing them. The company acknowledged the importance of data security and assured customers of its ongoing efforts to monitor and update security measures as needed.
This incident is not the first cybersecurity challenge faced by Jollibee, as the company previously reported a data breach in its delivery website in 2017. Following an investigation by the National Privacy Commission (NPC), Jollibee’s delivery website was suspended due to serious vulnerabilities that put the data of 18 million customers at risk of exposure.
Considering the recent breach and past cybersecurity issues, it is evident that Jollibee needs to prioritize its cybersecurity measures to safeguard customer information and prevent future incidents. The company’s reputation and customer trust are at stake, making it essential for Jollibee to enhance its security protocols and ensure robust cyber defense mechanisms are in place.
As the investigation into the cyberattack continues, Jollibee and its subsidiaries, including Greenwich, Red Ribbon, Burger King Philippines, and Highlands Coffee, are closely monitoring the situation and working towards resolving any vulnerabilities in their systems. It is crucial for companies like Jollibee to learn from such incidents and take proactive steps to strengthen their cybersecurity posture to protect customer data and maintain public trust in their brand.