Domino’s India Data Breach: Personal Details of over 18 crore Orders Leaked
The latest victim of a data breach is Domino’s India whose over 18 crore order details have been revealed on the dark web. Now, the group behind the hack has publicly resurfaced the 13TB data, which includes the personal information of 250 employees and customer details. Hackers have uploaded the data on the dark web as a searchable database that helps them in tracking and tracing users down to their visited locations by simply searching for a phone number or an email address.
Since the attackers have released the data online and the information is publicly available, anyone can search for it easily without requiring browsers like Onion or Tor. This is a real threat to privacy as anybody can search a mobile number and view the user’s past locations with date and time.
Rajshekhar Rajaharia, cybersecurity researcher stated that this data has been put on a search engine and contains names, mobile numbers, GPS coordinates, email addresses, and various other information related to Domino’s orders. He also said that people are taking advantage of this breach to spy on people by checking their past locations.
Alon Gal, co-founder and CTO of cybercrime intelligence firm, Hudson Rock, shared the news of a data leak on Twitter last month. The database of the company was sold for around two to eight bitcoins on the dark web and the company was given a ransom of 50 bitcoins to prevent the sale of data. However, the hacking group has at the moment denied sharing any stolen information with cybersecurity researchers.
Any user who has ordered from Domino’s India via the phone number or email address has been affected by this leak. The leaked information includes the details of the transactions such as who placed the order including the name, phone number, email address, and order delivery address of the customer, when the order was placed, total number of transactions, and the total amount spent on the order in Rupees.
According to Domino’s India spokesperson, the company has detected an ‘information security’ incident but the financial information of the users have not been compromised. The company does not store any financial information or any Credit/Debit Card details as a part of its policy. He also said that the company’s experts team is investigating the entire scenario and has taken the necessary steps to prevent the incident.
To find out if your information has been leaked, download Tor Browser or click on this link.