Mondelēz Suffers Data Breach

Snack food giant Mondelēz has warned employees that their personal data has been compromised through a data breach at the law firm Bryan Cave, which provides legal services to Mondelez.

Mondelēz stated in its data breach notice that more than 50,000 of its current and former employees were affected by the incident.

The leaked information may include employees' Social Security numbers, first and last names, addresses, dates of birth, marital statuses, genders, employee identification numbers, and retirement plan information. Financial information, including credit card numbers, was not affected, the company said.

Mondelēz said that it is not aware of any attempted or actual misuse of the leaked information but emphasized that “it takes this incident very seriously” and regrets any concern or inconvenience it may cause. The breach “did not occur on or affect Mondelēz systems or networks in any way,” the company said in the notice.

Bryan Cave has stated that on February 27, 2023, it detected unauthorized access to Mondelez systems, including an area it used to store certain customer files, from February 23, 2023 to March 1, 2023.

Following the discovery, Bryan Cave hired a cybersecurity forensics firm to conduct an investigation and notified Mondelēz about the incident in late March. 

The law firm also notified law enforcement.

Mondelēz warned its employees about the breach on June 15 after conducting a review of impacted information and identifying all affected individuals. The company is offering credit monitoring services to individuals based on the personal information that was potentially impacted.