The personal information of around 15 Crore+ customers and 10 Lakh credit card details of Domino’s India which includes their credit card details, name, address, email-Ids, phone numbers are reportedly aimed to be sold out on the dark web for Rs 4 Crore ($550,000), and according to the cyber security officials the hackers might have access to 13 TB of their database.
India’s most popular pizza chain Domino’s Pizza has fallen into the cyber-attack trap, and is now a victim of their database being hacked which is around 13Tb of database which also includes their employees details who are from the IT, marketing, finance, operations, etc. and are working around 250 branches of the pizza outlet.
CTO of the well-known security firm, Alan Hudson stated that a threat actor has professed to have hacked 13 TB of Domino’s database and is planning to sell the whole database to a single buyer on the dark web which is priced for $550,000.
Alan also revealed about this happening on his twitter handle with the proofs attached, he tweeted- Threat actor claiming to have hacked Domino’s India (@dominos) and stealing 13TB worth of data. Information includes 180,000,000 order details containing names, phone numbers, emails, addresses, payment details, and a whopping 1,000,000 credit cards.
Threat actor claiming to have hacked Domino’s India (@dominos) and stealing 13TB worth of data.
Information includes 180,000,000 order details containing names, phone numbers, emails, addresses, payment details, and a whopping 1,000,000 credit cards. pic.twitter.com/1yefKim24A
— Alon Gal (Under the Breach) (@UnderTheBreach) April 18, 2021
On the other hand, an independent cyber security expert from India Rajshekhar Rajahari, in his recent interview with IANS on 5th March, has mentioned about the CERT-in and the possible chances of it happening in the coming time.
Rajshekhar said- “I had alerted CERT-in about a possible Domino’s Pizza India hack where the threat actor got data access with details like 200 million orders and personal data of the users too. The hacker, however, did not provide any sample”.
However, Domino’s has yet not confirmed about the leakage of their data and hasn’t even reacted to the claim that Alon Hudson made. Domino’s made a statement about this news –
“Jubilant FoodWorks experienced an information security incident recently. No data pertaining to financial information of any person was accessed and the incident has not resulted in any operational or business impact. As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised.
Our team of experts is investigating the matter, and we have taken necessary actions to contain the incident.”
A recent survey by Sophos, which was under the headline of “The future of Cybersecurity” in Japan and Asia Pacific, they stated that in the last 12 months, about 52% of the domestic Indian companies have been made the victim of the cyber-attack.