This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Thousands of Coca Cola customers compromised after laptop theft

Share this article:

Beverage maker Coca-Cola has confirmed that the theft of unencrypted company laptops from the firm's headquarters in Atlanta may have compromised information on approximately 74,000 customers.

Thousands of Coca Cola customers compromised after laptop theft
Thousands of Coca Cola customers compromised after laptop theft

Citing a spokeswoman for the company, The Wall Street Journal reports that the laptops were stolen by a former employee who was responsible for the maintenance and disposal of equipment.

The company apparently recovered the stolen laptops, which were unencrypted, on December 10 but learnt shortly afterwards that information was stored on these devices, potentially compromising up to 74,000 customers. It is also worth noting that 10 credit card details were exposed in the breach, which is worrying in light of the group's compliance with PCI DSS.

“The Coca-Cola Company has sent notices to about 74,000 North America-based employees, former employees and other third parties informing them that some of their sensitive personal information was contained in documents on CCR and former CCE laptop computers that were stolen from the Company,” said the company in a statement.

“We have no indication that the information was misused.  However, we understand the concerns some people may have and therefore, to demonstrate an abundance of caution, The Coca-Cola Company is offering free identity theft protection services to all affected. 

“We take personal information security very seriously, and we apologise for any inconvenience this may cause.”

In response to the news, consultant Brian Honan said that the drinks giant had made a serious error in not encrypting the laptops in question.

“Serious questions have to be asked of Coca Cola as to why the affected laptops were not encrypted,” said Honan, of BH Consulting. “With the various encryption solutions available, there really is no excuse why an organisation should not have its laptops encrypted, in particular when they contain sensitive information to individuals.

“As this incident highlights, encrypting laptops and other devices not only protects sensitive information from those external to the company but also to unscrupulous insiders,” he added.

ViaSat UK CEO Chris McIntosh, meanwhile, added that this was the latest sign that even the world's biggest organisations (Coca-Cola was ranked as the world's most valuable brand for 12 years running up until 2012) are lax when it comes to data security.

“The latest data breach shows how easy it is for personal details to fall into the wrong hands and the importance of taking the right measures to protect data,” McIntosh told SCMagazineUK.com.

“Sensitive information like social security numbers, driver's licence numbers and credit-card information can offer lucrative opportunities for criminals and organisations should see this as a wake-up call. Being aware that your information is at risk and ensuring that it is properly secured is not paranoia: it is instead sensible behaviour in the information age.

“Organisations need to be sure they have a firm grasp on their data, know where and when it has been copied or transferred, and ensure that techniques such as encryption are in place in case it falls into the wrong hands.”

Share this article:

SC webcasts on demand

This is how to secure data in the cloud


Exclusive video webcast & Q&A sponsored by Vormetric


As enterprises look to take advantage of the cloud, they need to understand the importance of safeguarding their confidential and sensitive data in cloud environments. With the appropriate security safeguards, such as fine-grained access policies, a move to the cloud is as, or more, secure than an on-premise data storage.


View the webcast here to find out more

More in News

Microsoft warns on yet another zero-day security flaw

Microsoft warns on yet another zero-day security flaw

Microsoft has warned Windows users about a zero-day security issue with malicious PowerPoint documents being emailed to recipients. The software giant is working on a patch for the problem.

Google launches FIDO-compliant 2FA USB key for Chrome and Gmail

Google launches FIDO-compliant 2FA USB key for Chrome ...

Google has souped up its two-factor authentication (2FA) login process with the launch of Security Key, a physical USB that only works after verifying the login site is truly a ...

Evolving TorrentLocker ransomware generating big money

Evolving TorrentLocker ransomware generating big money

The TorrentLocker ransomware has returned with a vengeance and is starting to bring in big money for its operators.