In this time, when new reports of large data breaches seem to surface daily, it appears that not even ordering pizza is safe. Pizza Hut emailed about 60,000 customers this weekend, warning that their personal information may have been compromised in a recent hack.
Pizza Hut claims a security intrusion occurred in a 28-hour period on Oct. 1 and Oct. 2. The hack affected those who placed an order online or used Pizza Hut’s mobile app during this time. It’s believed that names, ZIP codes, delivery addresses, email addresses, and payment card information were compromised.
Slow To Inform?
“The security intrusion at issue impacted a small percentage of our customers and we estimate that less than one percent of the visits to our website over the course of the relevant week were affected,” read the notice sent to customers by Pizza Hut. “That said, we regret to say that we believe your information is among that impacted group.”
Customers are upset that Pizza Hut took nearly two weeks to inform them of the hack, and some Twitter users are claiming they have already been financially affected by the breach.
so @pizzahut sent an email today about a breach that occurred 2 weeks ago. their delay resulted in my bank acct being drained thx to fraud.
— ᴄᴏᴜʀᴛɴᴇʏ. (@runawaywithit) October 14, 2017
— Peter Yoachim (@PeterYoachim) October 14, 2017
@pizzahut great security there & thanks for the delay in notifying us after thieves already charged our accts. Keep up the excellent work
— Michael Richardson (@marichardsonjr) October 14, 2017
Pizza Hut director of communications Doug Terfehr told McClatchy that the restaurant chain worked as fast as it could to inform customers of the breach. While it takes time to fully assess the scope of a hack, that’s little solace to customers who are affected.
Pizza Hut is offering free credit monitoring service for a year to affected customers — those customers have until Jan. 11 to register for the service.
The chain is urging customers to be vigilant and aware of possible scammers. Pizza Hut will not contact customers and ask for personal information, such as social security numbers.
Pizza Hut’s website isn’t the only major site to give hackers access to protected information recently, as a bug on T-Mobile’s website may have done the same. In that case, however, it’s unclear how many customers were affected, if any.