Popular pizzeria Domino’s India appears to have been the victim of a cyberattack. According to Alon Gal, co-founder of Israeli Cybercrime Intelligence, hackers have access to Domino’s India’s 13TB of internal data, which includes employee details of more than 250 employees in verticals such as IT , legal, finance, marketing, operations, etc.
Hackers claim to have obtained full customer details and 18 crore order details including names, phone numbers, email IDs, shipping address, payment details including more than 10 lakh of credit card used to purchase on the Domino’s India app.
Additionally, hackers aim to sell the entire data to a single buyer. According to Alon Gal, hackers are looking for $ 550,000 (around Rs 4 crore) for the entire database. The hackers also plan to create a search portal to allow querying the data.
The sale is apparently taking place in the dark web and probably on a website frequented by cyber crooks. So far, Domino’s India has neither confirmed nor denied that its consumer data has been stolen or leaked from its servers.
If correct, Domino’s India customer data in public puts anyone who has ordered pizza from Domino’s and provided details such as their credit card, email ID or phone number, at risk of theft. identity and cyber fraud.
This is all the more worrying given that India has been the victim of several large-scale cyber breaches in recent times. According to data from the Computer Emergency Response Team (CERT-IN), during the Covid-19 pandemic, cyber attacks against India increased by almost 300% last year, to 11 , 58,208 in 2020 against 3.94,499 in 2019.
Last month, the Union’s transport ministry received an alert from CERT-IN of “targeted intrusion activity” directed at the country’s transport sector with “possible malicious intent”. This follows a series of cybersecurity attacks against the Indian government and private sector portals in recent months.
According to a Sophos Survey titled The Future of Cybersecurity in the Asia Pacific and Japan, around 52% of Indian domestic companies reported being victims of a cyber attack in the past 12 months. Of these successful breaches, 71% of organizations admitted it was a serious or very serious attack, and 65% said it took more than a week to fix.
Cyber security experts predict that artificial intelligence and machine learning-based malware, as well as state-sponsored cyberattacks, will be the most serious threats to business cybersecurity in the coming years.