Pizza Hut warned about 60,000 customers over the weekend that their personal information may have been compromised in a “third-party security intrusion,” the company said.
The Plano, Texas-based division of Yum! Brands Inc., on Saturday sent emails to customers, saying the hack of its website and mobile app occurred in a 28-hour period from the morning of Oct. 1 to midday Oct. 2.
“Pizza Hut quickly detected the intrusion and immediately took steps to halt it and remediate the security issue,” the company said in a statement Monday. “We estimate that less than 1 percent of the week’s traffic was affected.”
The company indicated that the compromised data included names, billing ZIP codes, delivery addresses, email addresses and payment card information that could include the account number, expiration date and Card Verification Value number.
“We take the information security of our customers very seriously and invest in resources to protect the customer information in our care,” Pizza Hut said. “We value the trust our customers place in us, regret that this happened, and apologize for any inconvenience this may have caused.”
Pizza Hut is offering a free credit monitoring service for a year with Kroll Information Assurance LLC. The deadline for monitoring service registration is Jan. 11.
The pizza brand also advised affected customers to be vigilant for scams that seek personal information because of the hack.
Retailers and information companies have fallen victim to data breaches, including an estimated 143 million payment cards affected by the Equifax breach in July and others at Whole Foods Market in September.
Earlier this month, Oklahoma City-based Sonic Corp. said it was the victim of a data breach that reportedly resulted in the potential theft of millions of customers credit and debit card numbers. The Krebs on Security blog said the Sonic breach could involve as many as 5 million credit and debit cards.
Contact Ron Ruggless at [email protected]
Follow him on Twitter: @RonRuggless