With “Pyaar Nahi, Pizza Chahiye” heightening our craving for the Italian serving, “your pizza carries your CVV” comes like a thunderclap.
Pizza delivery service Dominos India is the latest victim of a massive data breach that exposed order details of 18 crore Pizza orders made via the service. Internet Security Rajshekhar Rajaharia exposed the pizza giant on Twitter.
YOUR PIZZA CARRIES YOUR CV?
As per Rajaharia, the leak includes 130TB of employee data files and customer details. The cyber-attackers created a webpage on the dark web that pulls the data for any of the leaked order details simply by searching for a phone number or an email address.
Again!! Data of 18 Crore orders of #Domino's India have become public. Hacker created a search engine on Dark Web. If you have ever ordered @dominos_india online, your data might be leaked. Data include Name, Email, Mobile, GPS Location etc. #InfoSec #GDPR #DataLeak @fs0c131y pic.twitter.com/wIwL5ct6hX
— Rajshekhar Rajaharia (@rajaharia) May 21, 2021
THE VICTIM: EVERY DOMINO’S PIZZA LOVER?
Any user who has ordered from Dominos India via a phone call is a potential victim. Above all, the leaked information includes the delivery address, date, name, phone number, and email ID of the customer. In addition, the precise latitude and longitude coordinates of the address, the total number of transactions, and the transaction amount in INR are there.
Earlier, a link was attached with the tweet where the users can verify their information to check for themselves. However, later it was taken down to prevent any further spread of leaked information.
SECURITY EXPERTS’ TAKE
“Organisations handling end-user data should be investing more in cybersecurity solutions and practices that will enhance their security posture. In today’s digitalized world, protecting end-customer information is vital,” Prakash Bell, Head of Customer Success and SE Lead, India & SAARC, Check Point Software Technologies told The Indian Express.
DOMINO’S TAKE | YOUR PIZZA CARRIES YOUR CVV?
Domino’s gave voice to their pizza soon after the leak. The Indian outlet gave a clarification that explicitly revealed that they are combing through the breach. Domino’s has been wrapping updates in customers’ inboxes since the data breach.
However, no rectitude of solutions has come into the limelight. In addition, the Twitter handle of Domino’s India doesn’t fetch any hint of a viable remedy for this.
Read here | Cancel Final Year Exams, Writes NSUI To DU