Krispy Kreme online order operations disrupted due to cyberattack

Only in-store orders available

Cyberattack on Krispy Kreme

In late November, Krispy Kreme discovered a cyberattack that affected some of its online systems. The company first learned about the problem on November 29, 2024, when it detected “unauthorized activity on a portion of its information technology systems.”

Since then, it has worked to understand what happened and find the best way to fix it. As part of its effort, the company has openly shared information about the incident and kept customers informed.

As a result of this attack, customers in certain parts of the United States cannot place online orders as usual. According to the company’s official 8-K filing:[1]

Krispy Kreme shops globally are open, and consumers are able to place orders in person, but the Company is experiencing certain operational disruptions, including with online ordering in parts of the United States.

This situation has caused inconvenience for customers who prefer online services and rely on quick digital transactions.

The impact of this event is significant since online sales made up 15.5% of Krispy Kreme’s Q3 2024 revenue.[2] Even though stores remain open, the company expects that losing digital sales will affect its business until it fully recovers. This challenge comes at a time when digital channels are increasingly important for growth, making the current disruption a serious concern.

The nature of the cyberattack is not yet clear

Krispy Kreme has responded to the incident promptly by collaborating with the utmost experts in cybersecurity. “The Company, along with its external cybersecurity experts, continues to work diligently to respond to and mitigate the impact from the incident,” said the company.

It has also informed federal law enforcement, showing that the issue is taken seriously and that proper steps are being followed. The company hopes that involving experts and authorities will speed up the resolution.

While physical shops still serve customers and daily deliveries remain steady, Krispy Kreme is focused on restoring online ordering. The company has started investing in system repairs and is reviewing its digital defenses to prevent similar attacks in the future. At the same time, it is exploring ways to improve monitoring and response capabilities to quickly deal with any new threats.

Krispy Kreme has not confirmed if it was a ransomware attack or another form of cybercrime.[3] With the investigation ongoing, the company says that the full scope and details are not yet clear. This lack of clarity leaves questions about what data, if any, may have been accessed, and when the online services will be fully restored.

Krispy Kreme to tighten its security measures in the future

Due to the cyberattack, Krispy Kreme expects a “material impact” on its business until operations return to normal. The company also foresees extra costs, including fees for cybersecurity experts, system recovery expenses, and lost online revenue. This incident has even affected market confidence, as seen by a recent drop in the company’s stock price.

It is important that, at the end, powerful cybersecurity measures are maintained even by companies known for experiences out of the digital space. Since businesses come to depend more on digital sales and services, cyberattacks may cause disruptions that were more limited in scope than ever before, further underlining the constant vigilance and security investments necessary.

While the attack has caused problems, Krispy Kreme is optimistic it can recover without permanent damage to its business. By learning from this event and improving its security, the company aims to regain customer trust, restore its digital channels, and continue serving its well-loved products both online and offline.

About the author
Gabriel E. Hall
Gabriel E. Hall - Passionate web researcher

Gabriel E. Hall is a passionate malware researcher who has been working for 2-spyware for almost a decade.

Contact Gabriel E. Hall
About the company Esolutions

References
Files
Software
Compare