January 22, 2024 at 09:08AM
LockBit ransomware gang claims to have breached Subway’s database, accessing sensitive financial data. Subway has yet to respond publicly but is investigating the allegations. LockBit demands Subway to protect the data or face a potential sale to competitors. The ransomware gang may seek tens of millions of dollars, and Subway’s response is uncertain.
Based on the meeting notes, it is clear that the LockBit ransomware gang has claimed an attack on Subway, alleging that they have stolen sensitive financial data from the submarine sandwich chain. The criminals have posted this claim on their leak blog, highlighting Subway’s lack of response and suggesting that they have exfiltrated data including employee salaries, franchise royalty payments, and restaurant turnovers.
Additionally, the meeting notes indicate that it is uncertain whether ransomware was involved or if the claims are solely related to data theft and extortion. It has also been suggested that Subway’s security team may opt for a labor-intensive recovery and rebuild rather than paying a ransom, based on their past approach to security in their Android app development.
Lastly, the notes point out that Subway’s earnings figures are not publicly disclosed, making it difficult to estimate the exact ransom demand, but historical cases with large businesses suggest that it could be in the tens of millions of dollars.
Overall, the meeting notes reveal the seriousness of the situation and the potential impact on Subway’s financial and operational security.