Subway’s data torpedoed by LockBit, ransomware gang claims

The LockBit ransomware gang is claiming an attack on submarine sandwich slinger Subway, alleging it has made off with a platter of data.

LockBit’s post to its leak blog, published on January 21, suggests one of its affiliates breached Subway’s database, stealing sensitive data on “All financial aspects” of the fast food franchise.

“We exfiltrated their SUBS internal system which includes hundreds of gigabytes of data and all financial [aspects] of the franchise, including employee salaries, franchise royalty payments, master franchise commission payments, restaurant turnovers etc,” LockBit alleges.

The last line here suggests LockBit is giving Subway some time to mull the demands that it has almost certainly communicated to the company.

It’s not clear whether ransomware was involved or if the criminals’ claims are solely related to data theft and extortion, as ransomware gangs have been increasingly “Pivoting” to this in the last few years.

From intel gathered in 2023, LockBit established clear guidelines on ransom demands and how generous a discount its affiliates are allowed to offer before walking away from the table.

Share this article on social media:

Subscribe to Our Newsletter!

Stay on top of cybersecurity risks, evolving threats and industry news.

This field is for validation purposes and should be left unchanged.

Recent News

Featured Services

The Latest Cybersecurity News

From major cyberattacks, newly discovered critical vulnerabilities to recommended best practices, read it here first:

BOOK A MEETING

Enter your Email Address

This field is for validation purposes and should be left unchanged.

* No free email provider (e.g: gmail.com, hotmail.com, etc.)

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.