2023-01-19 YUM BRANDS INC Cybersecurity Incident

Page last updated on April 11, 2024

YUM BRANDS INC initially disclosed a cybersecurity incident in an SEC 8-K filing on 2023-01-19 06:01:50 EST.

Incident Details

Material: Unknown
Is Breach: Unknown
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date:
Disclosure Date: 2023-01-18
Contained Date:
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)


8-K filed on 2023-01-19

YUM BRANDS INC filed an 8-K at 2023-01-19 06:01:50 EST
Accession Number: 0001104659-23-004769

Item 8.01 Other Events.

On January 18, 2023, Yum! Brands, Inc. announced a ransomware attack that impacted certain information technology systems. Promptly upon detection of the incident, the Company initiated response protocols, including deploying containment measures such as taking certain systems offline and implementing enhanced monitoring technology. The Company also initiated an investigation, engaged the services of industry-leading cybersecurity and forensics professionals, and notified Federal law enforcement. Less than 300 restaurants in the United Kingdom were closed for one day, but all stores are now operational. The Company is actively engaged in fully restoring affected systems, which is expected to be largely complete in the coming days. Although data was taken from the Company’s network and an investigation is ongoing, at this stage, there is no evidence that customer databases were stolen. While this incident caused temporary disruption, the Company is aware of no other restaurant disruptions and does not expect this event to have a material adverse impact on its business, operations or financial results.

Company Information

SIC DescriptionRetail-Eating Places
TickerYUM - NYSE
CategoryLarge accelerated filer
Fiscal Year EndDecember 30