MyDeal data breach impacts 2.2M users, stolen data for sale online

by | Oct 18, 2022 | News

MyDeal data breach

Post Views: 137

Premium Content

Patreon

Subscribe to Patreon to watch this episode.

Reading Time: 3 Minutes

Woolworths’ MyDeal subsidiary has disclosed a data breach affecting 2.2 million customers, with the hacker trying to sell the stolen data on a hacker forum.

 

MyDeal is an Australian retail marketplace that connects online shoppers with local retailers.

Retail giant Woolworths purchased 80% of the company in September but said their systems are on a completely different platform and unaffected by the incident.

Last Friday, MyDeal stated that it suffered a breach after a hacker used compromised user credentials to access the company’s Customer Relationship Management (CRM) system, allowing the threat actor to view and export customer information.

The company says that 2.2 million customers were impacted by the data breach, with information such as names, email addresses, phone numbers, delivery addresses, and in some cases, birth dates exposed in the attack.

For 1.2 million customers, only the email addresses were exposed in the breach.

However, MyDeal states that no payment information, government IDs, or account passwords were exposed.

MyDeal has already begun to send data breach notifications to affected customers and say that customers who do not receive one were not affected.

 

See Also: So you want to be a hacker?
Complete Offensive Security and Ethical Hacking Course

Hacker starts selling MyDeal data

 

On Sunday, the hacker behind the MyDeal breach began selling the stolen data on a hacking forum for $600.

The hacker claims that the data currently consists of 1 million entries but that the number of exposed customers will increase as they finish parsing the database.

 

MyDeal data for sale on a hacking forum
MyDeal data for sale on a hacking forum
Source: BleepingComputer

 

As proof of their attack, the threat actor released screenshots of what they claim are the company’s Confluence server and a single-sign-on prompt for the company’s AWS account.

Trending: How to Exploit “improper error handling” in Web Applications

Trending: Offensive Security Tool: VLANPWN

Today, the threat actor released samples of the stolen data, exposing the personal information of 286 alleged MyDeal customers.

While MyDeal said that no passwords were exposed in the attack, it is suggested that you err on the side of caution and reset your passwords anyway.

As it is common for threat actors to purchase stolen data to use in their own attacks, all MyDeal customers should also be on the lookout for targeted phishing attacks.

Trending: Critical RCE Vulnerability Found in vm2 Sandbox Library

Are u a security researcher? Or a company that writes articles or write ups about Cyber Security, Offensive Security (related to information security in general) that match with our specific audience and is worth sharing?

If you want to express your idea in an article contact us here for a quote: [email protected]

Source: bleepingcomputer.com

Source Link

Merch

Recent News

EXPLORE OUR STORE

Offensive Security & Ethical Hacking Course

Begin the learning curve of hacking now!

Information Security Solutions

Find out how Pentesting Services can help you.

Join our Community

Share This