Del Taco
Company Details
Linkedin ID:
del-taco
Website:
Employees number:
4,769
Number of followers:
24,072
NAICS:
7225
Industry Type:
Homepage:
deltaco.com
IP Addresses:
0
Company ID:
DEL_5960892
Scan Status:
In-progress
Del Taco Company CyberSecurity Posture
deltaco.com
Founded in 1964, Del Taco, the Lake Forest, California-based company operates or franchisees nearly 600 restaurants across 16 states. Del Taco offers a full range of made-to-order Mexican items such as tacos, burritos, quesadillas and American favorites including cooked-to-order burgers, fries and shakes. Del Taco uses fresh ingredients including hand-made salsa, fresh produce, freshly grated cheddar cheese, chicken grilled every hour and lard-free beans made from scratch.
Del Taco A.I CyberSecurity Scoring
Del Taco Risk Score (AI oriented)Between 750 and 799
Del Taco
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Del Taco Global Score (TPRM)XXXX
Del Taco
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Del Taco Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Del Taco LLC
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: On February 21, 2019, the California Office of the Attorney General reported a data breach involving Del Taco LLC. The incident on January 28, 2019, involved a phishing scheme that potentially exposed employee names and social security numbers, though the total number of affected individuals is unknown.
Del Taco Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Del Taco
Incidents vs Restaurants Industry Average (This Year)
No incidents recorded for Del Taco in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Del Taco in 2025.
Incident Types Del Taco vs Restaurants Industry Avg (This Year)
No incidents recorded for Del Taco in 2025.
Incident History — Del Taco (X = Date, Y = Severity)
Del Taco cyber incidents detection timeline including parent company and subsidiaries
Del Taco Company Subsidiaries
Founded in 1964, Del Taco, the Lake Forest, California-based company operates or franchisees nearly 600 restaurants across 16 states. Del Taco offers a full range of made-to-order Mexican items such as tacos, burritos, quesadillas and American favorites including cooked-to-order burgers, fries and shakes. Del Taco uses fresh ingredients including hand-made salsa, fresh produce, freshly grated cheddar cheese, chicken grilled every hour and lard-free beans made from scratch.
Loading...
Del Taco Similar Companies
Waffle House has been serving Good Food Fast® since 1955. We started in one restaurant serving Avondale Estates, GA, and then grew into a national brand with more than 1,900 restaurants in 25 states providing career paths to 40,000 + employees. The love and devotion of our customer base helped bui
Panera began in 1987 as St. Louis Bread Company, a humble community bakery founded with a sourdough starter from San Francisco and a dream of putting a loaf of bread in every arm. While our business has expanded well beyond St. Louis since then, that same sourdough starter is still used in our iconi
Darden
Darden’s family of restaurants features some of the most recognizable and successful brands in full-service dining — Olive Garden, LongHorn Steakhouse, Yard House, Ruth's Chris Steak House, Cheddar’s Scratch Kitchen, The Capital Grille, Chuy's, Seasons 52, Eddie V's and Bahama Breeze. We own and ope
Popeyes Louisiana Kitchen
Founded in New Orleans in 1972, POPEYES® has more than 45 years of history and culinary tradition. Popeyes distinguishes itself with a unique New Orleans-style menu featuring spicy chicken, chicken tenders, fried shrimp, and other regional items. The chain's passion for its Louisiana heritage and fl
Taco Bell was born and raised in California and has been around since 1962. We went from selling everyone’s favorite Crunchy Tacos on the West Coast to a global brand with 8,200+ restaurants, 350 franchise organizations, that serve 42+ million fans each week around the globe. We’re not only the larg
Raising Cane's Chicken Fingers
Founded by Todd Graves in 1996 in Baton Rouge, La., RAISING CANE'S CHICKEN FINGERS has over 800 restaurants in 41 states, with many new restaurants under construction. The company has ONE LOVE®—craveable chicken finger meals—and is continually recognized for its unique business model and customer sa
McDonald's
McDonald’s is the world’s leading global foodservice retailer with over 37,000 locations in over 100 countries. More than 90% of McDonald’s restaurants worldwide are owned and operated by independent local business men and women. McDonald's & our franchisees employ 1.9 million people worldwide.
Red Robin
Since opening in 1969 in Seattle, Washington, Red Robin has welcomed Guests to our casual dining restaurants in the U.S. and Canada, connecting people around craveable food and fun in a relaxed, playful atmosphere. Our people are the foundation of our success. We aim to be an inclusive employer of
Olive Garden
Founded in 1982, Olive Garden is owned by Darden Restaurants, Inc. (NYSE:DRI), the world's largest company-owned and operated full-service restaurant company. With more than 800 restaurants, more than 92,000 employees and more than $3.5 billion in annual sales, Olive Garden is the leading restaurant
.png)
Del Taco CyberSecurity News
November 19, 2025 09:35 PM
Jack In The Box’s Q4 Shows Business Shrinking, Del Taco Deal Risks; Stock Slides After-Hours
CEO Lance Tucker admitted that the quarterly performance did not meet management's expectations.
October 17, 2025 07:00 AM
Jack in the Box to divest Del Taco to Yadav Enterprises for $115m
Jack in the Box has reached a definitive agreement to sell its wholly owned subsidiary Del Taco Holdings to Yadav Enterprises.
October 17, 2025 07:00 AM
Jack in the Box sells its stake in Del Taco for $115 million
The fast-food chain Jack in the Box is selling Del Taco for $115 million in a deal that's expected to close in January.
October 16, 2025 07:00 AM
Jack in the Box selling Del Taco for $115M
Yadav Enterprises will add the Mexican QSR to its growing portfolio of restaurants.
October 16, 2025 07:00 AM
Jack in the Box Inc. Announces Definitive Agreement to Sell Del Taco Holdings Inc. to Yadav Enterprises Inc.
SAN DIEGO, October 16, 2025--Jack in the Box Inc. (NASDAQ: JACK) (the "Company") today announced that it has entered into a definitive...
October 13, 2025 07:00 AM
Dale Carnegie, TeamLogic IT Drive Top 400 Sales Gains Amid Struggles in Business Services
No. 261 Dale Carnegie Training was the top percentage sales grower overall, up 18.5 percent as it regained losses from the pandemic years.
September 30, 2025 07:00 AM
Del Taco Releases New Del Dorado Chicken Lineup and Extends Fan-Favorite Orange Cream Shake
Freshly grilled, marinated chicken and bold Salsa Roja deliver unexpected flavor across tacos, burritos, quesadillas and more Del Dorado...
August 20, 2025 07:00 AM
Del Taco expands catering partnership with ezCater
Restaurant brand Del Taco has broadened its collaboration with ezCater, a platform dedicated to workplace food services in the US.
August 13, 2025 07:00 AM
Del Taco is selling burritos that weigh more than a half pound
The Tex-Mex division of Jack in the Box is offering the enlarged burritos as part of its El Big Box platform.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Del Taco CyberSecurity History Information
Official Website of Del Taco
The official website of Del Taco is http://www.deltaco.com.
Del Taco’s AI-Generated Cybersecurity Score
According to Rankiteo, Del Taco’s AI-generated cybersecurity score is 761, reflecting their Fair security posture.
How many security badges does Del Taco’ have ?
According to Rankiteo, Del Taco currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Del Taco have SOC 2 Type 1 certification ?
According to Rankiteo, Del Taco is not certified under SOC 2 Type 1.
Does Del Taco have SOC 2 Type 2 certification ?
According to Rankiteo, Del Taco does not hold a SOC 2 Type 2 certification.
Does Del Taco comply with GDPR ?
According to Rankiteo, Del Taco is not listed as GDPR compliant.
Does Del Taco have PCI DSS certification ?
According to Rankiteo, Del Taco does not currently maintain PCI DSS compliance.
Does Del Taco comply with HIPAA ?
According to Rankiteo, Del Taco is not compliant with HIPAA regulations.
Does Del Taco have ISO 27001 certification ?
According to Rankiteo,Del Taco is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Del Taco
Del Taco operates primarily in the Restaurants industry.
Number of Employees at Del Taco
Del Taco employs approximately 4,769 people worldwide.
Subsidiaries Owned by Del Taco
Del Taco presently has no subsidiaries across any sectors.
Del Taco’s LinkedIn Followers
Del Taco’s official LinkedIn profile has approximately 24,072 followers.
NAICS Classification of Del Taco
Del Taco is classified under the NAICS code 7225, which corresponds to Restaurants and Other Eating Places.
Del Taco’s Presence on Crunchbase
No, Del Taco does not have a profile on Crunchbase.
Del Taco’s Presence on LinkedIn
Yes, Del Taco maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/del-taco.
Cybersecurity Incidents Involving Del Taco
As of November 27, 2025, Rankiteo reports that Del Taco has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Del Taco has an estimated 4,808 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Del Taco ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach DEL323072525
Data Compromised: Employee names, Social security numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Employee Names, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach DEL323072525
Entity Name: Del Taco LLC
Entity Type: Company
Industry: Food and Beverage
Location: California
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach DEL323072525
Type of Data Compromised: Employee names, Social security numbers
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach DEL323072525
Source: California Office of the Attorney General
Date Accessed: 2019-02-21
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2019-02-21.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2019-01-28.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2019-02-21.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Employee names, Social security numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Employee names and Social security numbers.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=del-taco' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
