Pizza company Domino’s India suffered a data breach in April that contained 180 million customers’ order records, and a data dump weighing in total of 13TB data dump. Now that data has come to the fore in terms of a searchable portal.
You can search for your phone number or email address to check the orders you’ve placed. The dreaded part is that the data contains information about your order location, apart from your phone number and email ID. This makes it easy for scammers or spammers to locate your home and office address.
TNW talked to people who were able to search their order history along with their details; even I got to know how many pizzas I ordered while watching TV.
The portal was first mentioned in one of the popular security forums, and was first noticed by researcher Rajshekhar Rajaharia. The portal is available through an onion link and we’ve not linked it to avoid misuse.
The worst part of this alleged breach is that people are using this data to spy on people. Anybody can easily search any mobile number and can check a person’s past locations with date and time. This seems like a real threat to our privacy. #InfoSec#GDPR#DataLeakpic.twitter.com/5G494xJSCf
— Rajshekhar Rajaharia (@rajaharia) May 22, 2021
The portal also mentioned that the hackers will release data related to payments and employees soon. However, according to a report by The Economic Times, Jubilant Foods, the company which owns the Domino’s brand, denied that any financial information was a part of the data breach that took place in April.
As a customer, there’s nothing you can do about this type of data breach, but demand better security from the companies that serve you.