CRW

Home Wiki

Pizza Hut

View on consumerrights.wiki ↗

Contents7
  1. Consumer-impact summary
  2. Incidents
  3. 2017 Data Breach
  4. Pizza Hut Australia Data Breach
  5. Pizza Hut collection of Data regardless if Consumer opted-out Lawsuit
  6. See also
  7. References
Pizza Hut
Basic information
Founded 1958-03-31
Legal Structure Public subsidiary
Industry Food
Also known as
Official website https://www.pizzahut.com/

Founded in May 31, 1958 in Whichia Kansas by Dan Carney and Frank Carney, Pizza Hut is an pizza restaurant chain that's a subsidiary to Yum! Brands. The company holds the third largest pizza chain behind Domino's and Hunt Brothers Pizza. [1]

Consumer-impact summary

  • Privacy Violations
  • Security Vulnerabilities
  • Slow responses and Fixes

Incidents

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the Pizza Hut category.

2017 Data Breach

On October 1 till October 2, Pizza Hut experienced a website and mobile application data breach leaking 60,000 customers name, billing zip code, delivery address, email address, gift card number, gift card pin, and payment card information. Pizza hut discovered and fixed the issue quickly on October 5, later sending an sent an email to customers affected on October 14.[2][3]

"We have learned that the information of some customers who visited our website or mobile application during an approximately 28-hour period (from the morning of October 1, 2017 through midday on October 2, 2017) and subsequently placed an order may have been compromised. Pizza Hut identified the security intrusion quickly and took immediate action to halt it. The security intrusion at issue impacted a small percentage of our customers and we estimate that less than one percent of the visits to our website over the course of the relevant week were affected. That said, we regret to say that we believe your information is among that impacted group."

The company had faced criticism after the incident for informing consumers 2 weeks after, with one response on twitter replied to pizza hut;

"Hey @pizzahut, thanks for telling me you got hacked 2 weeks after you lost my cc number. And a week after someone started using it. #timely"

After the public announcement of the hack, a response from Pizza Hut Spokesperson spoke about the incident, saying;[4]

"Pizza Hut takes the information security of our customers very seriously and invests in resources to protect the customer information in our care. We value the trust our customers place in us, regret that this happened, and apologise for any inconvenience this may have caused"

Pizza Hut Australia Data Breach

On September 2023, hacker group ShinyHunter gained access to Amazon Web Services used by Pizza Hut, allowing access of 30 million order records and 200,000 customer names, email addresses, home addresses, and mobile numbers, with the rest of customers information (credit cards and passwords) were encrypted.[5] ShinyHunter demanded the company pay $300,000 for the data to be deleted shortly after the hack, Pizza Hut responded by hiring cybersecurity specialist to fix the issue and contacted affected customers of the hack. it is unknown whether payment deals were made between Pizza Hut and ShinyHunter.[6][7]

"From our investigation and the steps taken in response to the incident, we believe there is only a small proportion of customers on our database whose personal information has been impacted. We have notified these customers as well as the Office of the Australian Information Commissioner (OAIC) of the incident." [8]

Pizza Hut collection of Data regardless if Consumer opted-out Lawsuit

Pizza is suffering an class action lawsuit filed by Danuel Cortez over violation of Telephone Consumer Protection Act with continuation of sending messages after users opted-out. The company and it's parent company Yum! Brands hasn't commented on the lawsuit, however it's still in progress.[9][10]

See also

References

  1. "10 Largest pizza chains in the United States in 2026". ScrapeHero. 2026-01-15. Archived from the original on 2 Dec 2025. Retrieved 2026-02-16.
  2. Ashford, Warwick (2017-10-16). "Pizza Hut data breach shows need for board control". ComputerWeekly. Archived from the original on 11 Oct 2025. Retrieved 2026-02-17.
  3. "Baker McKinzie" (PDF). Baker McKinzie. 2017-10-16. Archived (PDF) from the original on 22 Feb 2026. Retrieved 2026-02-17.
  4. Hall, Kat (2017-10-16). "Customers cheesed off after card details nicked in Pizza Hut data breach". The Register. Archived from the original on 7 Dec 2025. Retrieved 2026-02-16.
  5. Cluley, Graham= (2023-09-03). "Pizza Hut Australia leaks one million customers' details, claims ShinyHunters hacking group". Bitdefender. Archived from the original on 24 Feb 2026. Retrieved 2026-02-17.
  6. Rawling, Caitlin (2023-09-20). "Pizza Hut says nearly two-hundred thousand customers affected by data breach". ABC. Archived from the original on 9 Oct 2025. Retrieved 2026-02-17.
  7. Sharwood, Simon (2023-09-21). "Data breach reveals distressing info: People who order pineapple on pizza". TheRegister. Archived from the original on 14 Nov 2025. Retrieved 2026-02-16.
  8. Dixon, Georgia (2023-09-20). "Pizza Hut Australia confirms major data breach". SafeWise. Archived from the original on 14 Sep 2025. Retrieved 2026-02-16.
  9. Troutman, Eric (2025-10-08). ""DO NOT SEND ME ANYMORE MESSAGES!!!!": Pizza Hut Sued for Failing to Honor SMS Opt Out Request–And The Trend Continues". National Law Review. Archived from the original on 13 Nov 2025. Retrieved 2026-02-17.
  10. "Pizza Hut class action claims restaurant does not honor requests to opt out of text messages". Top Class Actions. 2023-07-11. Archived from the original on 24 Feb 2026. Retrieved 2026-02-15.
Filed under