- Domino’s India’s data breach includes personal info of 18 crores customer and 1 crore credit cards
- The company has said that it does not store any financial details of the customers
- The data is being sold on the dark web
Popular pizza restaurant Domino’s has become a victim of cyber attack in India. The hackers reportedly gained access to 13 terabytes worth of data which included sensitive information of customers like their names, phone numbers and credit card details.
The data breach was reported by Alon Gal, co-founder of a cybercrime intelligence firm. He added that the data is being sold on the dark web for 10 Bitcoins or $5,50,000 which is roughly 4.20 crores.
The threat actor is looking for around $550,000 for the database and saying they have plans to build a search portal to enable querying the data. pic.twitter.com/o2UuA7LWXJ
— Alon Gal (Under the Breach) (@UnderTheBreach) April 18, 2021
Domino’s India’s customer data allegedly up for sale on the dark web
The data breach reportedly includes 18 crore customer’s order information including phone numbers, email addresses, and payment details. It also includes the credit card information of a whopping 1 crore users. The breach is also claimed to contain Domino’s India’s internal files generated between 2015 and 2021. Apart from the data of customers, the hacker also accessed the data of 250 employees of the company across various departments like IT, Legal, Finance and others.
A screenshot shared by Gal on Twitter revealed that the hacker is planning to build a search portal like MobiKwik that will enable querying of the leaked data.
Another cybersecurity researcher Rajshekhar Rajharia also confirmed about Dominos India data breach. He also shared screenshots of the database revealing all details that have been accessed by the hacker.
According to Gadgets360, Domino’s India spokesperson said in a statement ‘Jubilant FoodWorks experienced an information security incident recently. No data pertaining to the financial information of any person was accessed and the incident has not resulted in any operational or business impact. As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised.Our team of experts is investigating the matter and we have taken the necessary actions to contain the incident.’
Domino’s India joins the growing list of Indian companies that were hacked recently including MobiKwik, Upstox, BigBasket and more.