Cybersecurity Incident Causes Operational Disruptions for International Doughnut Chain
On Wednesday, international doughnut chain Krispy Kreme disclosed a security incident that has caused certain operational disruptions, including with online ordering in parts of the United States. The company revealed the cyberattack in an 8-K filing with the SEC.
Timeline of Events
- November 29: Krispy Kreme was notified regarding unauthorized activity on a portion of its information technology systems.
- Following notification, the company took steps to investigate, contain, and remediate the incident with the help of cybersecurity experts.
Impact of the Cyberattack
The cyberattack has had a significant impact on Krispy Kreme’s business operations. The company disclosed that shops around the world are open, and there is no interruption to deliveries to retail and restaurant partners. However, online ordering has been disrupted in certain areas of the United States.
Company Response
In response to the cyberattack, Krispy Kreme stated that it continues to work diligently with its external cybersecurity experts to respond to and mitigate the impact from the incident. The company is also working to restore online ordering and has notified federal law enforcement.
Investigation Ongoing
The investigation into the cyberattack is ongoing, and the full scope, nature, and impact of the incident are not yet known. Krispy Kreme emphasized that it is taking all necessary steps to address the situation and prevent similar incidents in the future.
Questions Remain Unanswered
When reached for comment, Krispy Kreme spokesperson Cassie Beem provided a statement echoing the language in the 8-K filing. However, several questions about the incident remain unanswered, including:
- Whether this was a ransomware attack
- If hackers stole employee or company data
- How exactly the incident is disrupting operations and online ordering
Material Impact on Business Operations
Krispy Kreme stated in the filing that the incident has had and is "reasonably likely to have a material impact" on the company’s business operations until recovery.
Cybersecurity Concerns
The cyberattack highlights the importance of robust cybersecurity measures for businesses, particularly those with online ordering systems. It also underscores the need for companies to be prepared to respond quickly in the event of a security incident.
Related Stories
- Senator Warns of National Security Risks after Elon Musk’s DOGE Granted ‘Full Access’ to Sensitive Treasury Systems
- A Brief History of Mass Hacks
Stay Informed
To stay up to date on the latest cybersecurity news and trends, follow TechCrunch’s Security section.
About the Author
Lorenzo Franceschi-Bicchierai is a Senior Writer at TechCrunch, where he covers hacking, cybersecurity, surveillance, and privacy. You can contact Lorenzo securely on Signal at +1 917 257 1382, on Keybase/Telegram @lorenzofb, or via email at lorenzo@techcrunch.com.
Subscribe to TechCrunch
Stay informed about the latest tech news by subscribing to TechCrunch’s newsletters:
