Domino’s India recently suffered a massive data breach which also breached sensitive information, including mobile numbers and GPS location, of around 18 crore users; reportedly, the information is being made available on the dark web. This shocking incident comes after Air India suffered the same fate.
The news of the data breach was first noticed and voiced by cybersecurity researcher Rajshekhar Rajaharia. In a tweet he mentioned, “Hacker created a search engine on Dark Web. If you have ever ordered @dominos_india online, your data might be leaked. Data include Name, Email, Mobile, GPS Location etc”.
His tweet further reads, “The worst part of this alleged breach is that people are using this data to spy on people. Anybody can easily search any mobile number and can check a person’s past locations with date and time. This seems like a real threat to our privacy.”
The owner company of Domino’s Jubilant FoodWorks also made an official statement after the claim of Rajaharia was made available that admitted to the data breach. Whenever sensitive data has breached, the leaking of the private information of the users becomes the main concern. With Domino’s data breach, there is also a concern with the users’ financial information, the breach of which could be disastrous, to say the least.
But Jubilant FoodWorks has made it clear that the data breach could not access the customers’ financial information. The company’s official statement has revealed, “Jubilant FoodWorks experienced an information security incident recently. No data pertaining to the financial information of any person was accessed and the incident has not resulted in any operational or business impact. As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised. Our team of experts is investigating the matter and we have taken necessary actions to contain the incident.”
Interestingly, this is not the first time that the joint pizza chain has suffered a cyber attack. In fact, just two months back, the company had suffered a similar breach. In the data breach that happened in April, customers’ names, contact numbers, email IDs, and credit card details were exposed to the hackers.