Hackers claim Coca-Cola employee and HR data leaked on dark web site
Coca-Cola is reportedly investigating a possible data breach after its name appeared on a dark web leak site operated by the Everest ransomware group. According to the attackers, the breach involved the exposure of personal details belonging to nearly 1,000 Coca-Cola employees, alongside internal corporate documents.
The leak allegedly includes personally identifiable information (PII) such as employee ID data and HR-related files, including salary information. Several screenshots of the supposed stolen material were posted to the dark web as evidence by the threat actors.
One image displayed documents consistent with those typically maintained by human resources departments. Another pointed to Coca-Cola’s operations in the Middle East, suggesting that a regional distributor may have been the direct target of the intrusion.
If confirmed, the breach may present significant risks to the affected individuals. The exposed information could be leveraged for:
- Identity theft
- Financial fraud
- Targeted phishing attacks
Cybercriminals could use the data to impersonate Coca-Cola employees or systems, crafting realistic messages that trick recipients into revealing additional sensitive information.
As of now, Coca-Cola has not publicly confirmed the breach or disclosed any specific impacts. Investigations are likely ongoing.
