Jollibee Group Data Breach Linked to Global Ransomware Attacks on 165 Companies

The National Privacy Commission (NPC) revealed on Wednesday that the recent data breach affecting Jollibee Foods Corp. (JFC) may be part of a series of ransomware attacks targeting 165 companies worldwide.

Global Ransomware Connection

NPC Compliance and Monitoring Division Chief Rainier Anthony Millanes indicated that cybercriminals accessed and compromised JFC’s data lake, which contains both structured and unstructured data, including personal and sensitive information. This breach aligns with a global pattern of extortion activities, where attackers demand ransom in exchange for stolen data.

“Maaaring connected ito sa string of extortion activities. Ito po ‘yung paghingi ng pera kapalit ng datos o ransomware extortion activities na nangyayari ngayon sa buong mundo,” Millanes said during a public briefing.

Shared Cloud Database Provider

Millanes noted that the affected companies, including JFC, use the same cloud database provider, which has been involved in multiple global data breaches. Last week, the NPC reported that around 11 million JFC data subjects were impacted, with compromised information including dates of birth and senior identification numbers.

JFC’s Response and Investigation

JFC has requested an additional 20 days to complete its internal investigation into the breach. The company has activated response protocols and enhanced security measures while assuring customers that its e-commerce platforms remain operational and unaffected.

Potential Inside Job and Cybercriminal Activity

The NPC is not ruling out the possibility of an inside job. “Hindi natin niru-rule out ang inside job. Meron kaming Complaints and Investigation Division, sila ‘yung nag-iimbestiga…para matunton sino ang gumawa nitong data breach na ito,” Millanes stated. He mentioned that a cybercriminal using the alias ‘Spider’ leaked information about the breach on a dark web site and could be part of an international hacking group.

Public Vigilance and Security Enhancement

The NPC emphasized the need for JFC to notify affected customers and assist them in protecting their data. The commission also warned the public about the potential increase in phishing and scam attempts following the breach, urging vigilance and prompt reporting of suspicious activities.

“Inaabisuhan ko na ang lahat ng kumpanya na may big data processing tulad ng Jollibee na mag-beef up na kayo. Mag-improve na kayo on your cybersecurity,” Millanes advised.

“Don’t let yourselves be victimized. This will definitely cause damage to the reputation of your organization, among others,” he added.