Hacker mass-mails HungerRush extortion emails to restaurant patrons
Summary
Customers of restaurants using the HungerRush point-of-sale (POS) system have reported receiving mass-mailing extortion emails. Threat actors are threatening to expose restaurant and customer data if HungerRush does not comply with their demands.
IFF Assessment
FOE
This incident demonstrates a new tactic by threat actors to extort companies by directly targeting their customers, creating reputational damage and potential data exposure for both.
Defender Context
This attack highlights the importance of securing POS systems and the sensitive data they handle, as well as having robust incident response plans that consider customer communication. Defenders should monitor for similar multi-pronged extortion attacks targeting supply chains.