Cyber Incident Victim: Mise En Place Restaurant Services

On March 15, 2018, Mise En Place Restaurant Services, Inc. (MEP) discovered a potential ransomware attack affecting part of its network. The company immediately engaged its IT consultant to initiate an investigation and concurrently hired a specialized third-party forensic IT firm to assess the breach. As a precautionary measure, MEP changed all network passwords to contain the incident. The forensic investigation determined that unauthorized actors had accessed MEP’s server during a nine-day period from March 6 to March 15, 2018. While the ransomware attack prompted the discovery, the forensic analysis confirmed broader unauthorized access beyond the initial encryption event. MEP publicly disclosed the incident on April 13, 2018, emphasizing that no evidence suggested business or personal information had been misused.

The compromised server contained sensitive client and individual information potentially exposed during the breach window. This included full names, addresses, Social Security Numbers, Federal Identification Numbers, passport numbers, driver’s license details, resident card numbers, bank account and routing numbers, and login credentials for bank accounts, insurance portals, or vendor systems provided to MEP. Impacted parties received written notifications, though MEP acknowledged the scope of exposure varied across individuals and business entities. The company established a dedicated call center (1-888-292-8414) for those who believed their information was maintained by MEP but did not receive direct notification. No ransomware payment details or data recovery status were disclosed in the public announcement.