I won’t let this devolve into a debate on who makes the best hamburgers, but Five Guys Enterprises, LLC is notifying its employees about a data breach that affects them.
According to a copy of its notification letter, submitted to the California Attorney General’s Office on November 2:
On August 6, the firm discovered that an employee had fallen for a phishing attack that gave the attacker access to their email account. An investigation determined that the employee’s inbox contained messages or attachments with employees’
name, date of birth, Social Security number, address, hire date, termination date, and 401K contribution information.
Although not stated in the letter signed by Sam Chamberlain, Chief Operating Officer, additional information provided to the state indicated that the phishing attack occurred on May 23, 2018.
The number of affected employees was not disclosed, but those affected have been offered a complimentary one-year membership for Experian’s® IdentityWorksSM.