NEW DELHI: A data breach in the servers of Domino’s, the pizza brand, has allegedly exposed sensitive information of its Indian users, according to Israel-based cybersecurity firm, Under The Breach.
The database with details of over 18 crore orders and sensitive information, including name, phone numbers, email addresses and credit card details of over 10 lakh users, is on sale on the dark web, UTB said. Domino’s parent company Jubilant Food-Works didn’t deny the breach, but refuted claims financial data was leaked.
Domino’s parent co says financial data not stolen
Jubilant FoodWorks (Domino’s parent company) experienced an information security incident recently. No data pertaining to financial information of any person was accessed and the incident has not resulted in any operational or business impact.
As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised,” the company said in a statement shared with TOI. They added that their team is “investigating the matter and have taken the necessary steps to contain the incident”.
“Threat actor claiming to have hacked Domino’s India and stealing 13TB worth of data. Information includes 180,000,000 order details containing names… addresses, payment details, and 1,000,000 credit cards,” tweeted UTB chief technology officer Alon Gal on Sunday.
Threat actor claiming to have hacked Domino’s India (@dominos) and stealing 13TB worth of data.Information includ… https://t.co/ayn9de8hgf
— Alon Gal (Under the Breach) (@UnderTheBreach) 1618728347000He added the hackers were charging over Rs 4 crore for the dataset. “The threat actor is looking for around $550,000 for the database.”
