A risk actor is claiming to have stolen the own facts of more than a million consumers of Domino’s Pizza.
In an advert put on the dark web, the alleged hacker says that they are promoting 13 terabytes of facts that they claim was stolen from the Indian branch of the American multinational pizza restaurant.
The illicit advertisement was learned by Alon Gal, the co-founder and chief technology officer of Israel-centered cybercrime intelligence agency Hudson Rock. Gal posted news of the alleged hack on social media on April 18.
In his article, the cybersecurity professional reported that the info appeared to include the details of as lots of as 180 million Domino’s orders. Amid the allegedly leaked information and facts was delicate client details, like phone numbers, addresses, email addresses, and the particulars of around one particular million credit rating cards.
Gal explained that dark web customers ended up getting made available the prospect to invest in the details for $550,000.
To allow the facts to be selectively picked by way of, the risk actor mentioned that they would be developing a search portal.
A spokesperson for Domino’s Pizza in India stated that Jubilant FoodWorks Constrained, which holds the grasp franchise for Domino’s Pizza in India, Nepal, Sri Lanka, and Bangladesh, experienced skilled an info security incident lately.
“No details pertaining to fiscal info of any particular person was accessed and the incident has not resulted in any operational or business enterprise affect,” explained the spokesperson.
They additional that customers’ financial facts was not vulnerable to hacking attacks for the reason that of the firm’s facts storage procedures.
“As a policy, we do not store monetary facts or credit score card information of our clients, so, no these types of information and facts has been compromised,” stated the spokesperson.
They additional: “Our staff of industry experts is investigating the issue and we have taken necessary steps to consist of the incident.”
Cybersecurity researcher Rajshekhar Rajaharia said that he alerted the Indian government’s Pc Emergency Reaction Crew (CERT-In) on March 5 that info belonging Domino’s may perhaps have been exposed on the dark web given that February.
On Twitter, Rajaharia said that the menace actor proclaiming to have hacked the pizza restaurant may well be the same person who allegedly hacked India’s biggest independent cell payments network, MobiKwik, in February.
Some parts of this article are sourced from:
www.infosecurity-journal.com