Page last updated on December 11, 2024
Krispy Kreme, Inc. initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-12-11 06:06:35 EST.
Company Summary
Krispy Kreme is a global retailer of premium-quality sweet treats and is famous for its original glazed doughnut.
Incident Details
Material: Unknown
Is Breach: Unknown
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)
Compromised Date:
Detected Date: 2024-11-29
Disclosure Date: 2024-12-11
Contained Date:
Recovered Date:
Attack Goal: Unknown
Costs: No Costs Tracked (yet)
Filings
8-K filed on 2024-12-11
Krispy Kreme, Inc. filed an 8-K at 2024-12-11 06:06:35 EST
Accession Number: 0001857154-24-000123
Item 1.05 Material Cybersecurity Incidents.
On November 29, 2024, Krispy Kreme, Inc. (the “Company”) was notified regarding unauthorized activity on a portion of its information technology systems. The Company immediately began taking steps to investigate, contain, and remediate the incident with the assistance of leading cybersecurity experts.
Krispy Kreme shops globally are open, and consumers are able to place orders in person, but the Company is experiencing certain operational disruptions, including with online ordering in parts of the United States. Daily fresh deliveries to our retail and restaurant partners are uninterrupted.
The Company, along with its external cybersecurity experts, continues to work diligently to respond to and mitigate the impact from the incident, including the restoration of online ordering, and has notified federal law enforcement. As the investigation of the incident is ongoing, the full scope, nature, and impact of the incident are not yet known.
As of the date of this filing, the incident has had and is reasonably likely to have a material impact on the Company’s business operations until recovery efforts are completed. The expected costs related to the incident, including the loss of revenues from digital sales during the recovery period, fees for our cybersecurity experts and other advisors, and costs to restore any impacted systems, are reasonably likely to have a material impact on the Company’s results of operations and financial condition. The Company holds cybersecurity insurance that is expected to offset a portion of the costs of the incident. The Company does not expect this will have a long-term material impact on its results of operations and financial condition.
Company Information
| Name | Krispy Kreme, Inc. |
| CIK | 0001857154 |
| SIC Description | Retail-Food Stores |
| Ticker | DNUT - Nasdaq |
| Website | |
| Category | Large accelerated filer |
| Fiscal Year End |