駭客發現 Krispy Kreme Doughnuts 的網路安全漏洞

Krispy Kreme, the well-known doughnut chain, has recently announced that it has been affected by a cyberattack that has disrupted its online ordering systems. This incident has caused some customers in the United States to experience difficulties when trying to place their orders online. The cyberattack took place in late November, but the company only disclosed the information recently. In a filing with the US Securities and Exchanges Commission, Krispy Kreme stated that the attack was 'reasonably likely' to have a significant impact on its business operations. However, they reassured customers that their physical stores remain open for business. A message on the Krispy Kreme website reads, 'We are experiencing certain operational disruptions due to a cybersecurity incident, including issues with online ordering in parts of the United States. ' The company acknowledged the inconvenience this has caused and emphasized that they are working diligently to resolve the issue. Following the attack, Krispy Kreme took immediate action to investigate and contain the situation, bringing in cybersecurity experts to assist them. They stated, 'We, along with them, continue to work diligently to respond to and mitigate the impact from the incident, including the restoration of online ordering. ' As of now, no groups have publicly claimed responsibility for the cyberattack. Krispy Kreme is a major player in the US market, boasting over 1,400 shops worldwide. In the UK, while smaller, it still holds the title of the largest specialty doughnut retailer with 120 locations. In their SEC filing, Krispy Kreme mentioned that they have cybersecurity insurance, which they expect will help cover some of the costs associated with the attack. These costs are anticipated to arise from lost digital sales, fees for the cybersecurity experts they have hired, and the restoration of the affected systems. Cyberattacks have been a significant issue this year, impacting critical infrastructure and various businesses. Spencer Starkey, a representative from the cybersecurity firm SonicWall, commented, 'The increase in cyberattacks in 2024 shows that hackers are willing to target anything and everything. ' He stressed the importance of every business having a solid plan in place to respond to such attacks. On social media, reactions to the incident have been mixed, with some users making light of the situation. One user on X humorously remarked, 'Anyone messing with Krispy Kreme should be jailed for life,' while another added, 'Cybercriminals, you've gone too far this time.