Skip to main content
photo of bread loaves

Panera Data Breach Investigation

Written by Joseph Lyon on . Posted in Data Breach.

The Lyon Firm is investigating data breach claims on behalf of employees and customers at Panera Bread who may have had their personal information compromised. An investigation is ongoing, and more updates will be available in the coming weeks. Anyone impacted, however, should begin to take certain measures to mitigate the risk of fraud and identity theft.

To learn more about how to protect yourself following a data privacy intrusion and to consider taking legal action, contact our data breach lawyers. We offer free case reviews and confidential consultations. Our legal team is currently involved in numerous data privacy lawsuits, and we represent plaintiffs in all fifty states. 

What Happened at Panera?

While the company has not confirmed this, BleepingComputer reported in early April 2024 that many of Panera’s systems were encrypted in a ransomware attack. As a result of this security breach, Panera suffered a massive outage that affected IT systems, phones, point of sales systems, website, and mobile apps.

On June 13th, Panera filed a notice of data breach with the Attorney General of California after discovering that an unauthorized party accessed the company’s IT network. The breach resulted in the unauthorized individual seeing and possibly exporting consumers’ sensitive information, including names and Social Security numbers. The company has begun sending out data breach notification letters to all impacted individuals.

The Panera Bread data breach is still in the early stages, but the sample letter provided to the Attorney General in multiple states provides some important information on what caused the breach. According to the letters prepared for victims of this incident, Panera first detected the incident on March 23, 2024. A cybersecurity firm was hired for a full review, and on May 16th, they determined that certain files may have been leaked.

If you receive a data breach letter from Panera, LLC, it is important to understand what is at risk. We believe that any company that collects and stores the data of employees and clients has a duty to properly protect it. If a security breach occurs due to poor IT security, the company could be held liable.

More About Panera Bread

Operating out of St. Louis, Panera, LLC is a restaurant chain with more than 2,000 restaurants throughout the United States and Canada. The company has yet to disclose the number of employees impacted, the threat actor behind the alleged ransomware attack, and the complete internal fallout of the incident.

Contact us via the intake forms or give us a call to learn more about how class action data breach lawsuits work, and to start filing your claim. We seek compensation for our clients and justice for the damages and emotional distress that results from data breach incidents.