"Based on our investigation, we understand that some of your personal information, including your name and social security number, date of birth, and financial account number and routing number, may have been accessed by an unauthorized third party."
"An investigation found that hackers accessed Starbucks Partner Central accounts after obtaining user credentials through a phishing attack that leveraged fake websites designed to mimic the portal."
"Based on the limited information shared by the company, it appears that its systems have not been directly targeted and its networks have not been compromised."
Starbucks discovered unauthorized access to its Partner Central employee portal on February 6, affecting nearly 900 employees. Hackers obtained employee credentials through phishing attacks using fake websites mimicking the legitimate portal. The breach exposed personal information including names, social security numbers, dates of birth, and financial account details. Starbucks' core systems and networks were not directly compromised. The unauthorized access occurred between January 19 and February 11. Law enforcement was notified, and affected employees received free identity protection services. The incident represents a targeted attack on employee accounts rather than a direct system compromise.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]