A former Disney employee allegedly hacked the software used by Walt Disney World’s restaurants. He accessed a third-party menu-creation system and altered menus, including changing vital allergy information and locking out other employees. The incident led to unusable menu databases due to changes in the font. The hack may have had reputational and financial impacts on Disney, given the nature of the sabotage and the potential risks to customers with allergies.
Source: https://www.wired.com/story/disney-world-menu-hack-wingdings/
TPRM report: https://scoringcyber.rankiteo.com/company/the-walt-disney-company
"id": "the001111224",
"linkid": "the-walt-disney-company",
"type": "Breach",
"date": "11/2024",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Entertainment',
'location': 'Florida, USA',
'name': 'Walt Disney World',
'type': 'Entertainment and Hospitality'}],
'attack_vector': 'Unauthorized Access',
'description': 'A former Disney employee allegedly hacked the software used '
'by Walt Disney World’s restaurants. He accessed a third-party '
'menu-creation system and altered menus, including changing '
'vital allergy information and locking out other employees. '
'The incident led to unusable menu databases due to changes in '
'the font. The hack may have had reputational and financial '
'impacts on Disney, given the nature of the sabotage and the '
'potential risks to customers with allergies.',
'impact': {'brand_reputation_impact': 'High',
'operational_impact': 'Unusable menu databases',
'systems_affected': 'Menu-creation system'},
'motivation': 'Sabotage',
'threat_actor': 'Former Disney Employee',
'title': 'Former Disney Employee Hacks Restaurant Software',
'type': 'Malicious Insider',
'vulnerability_exploited': 'Insider Threat'}