Jubilant Foodworks, the owner of the Domino’s India brand, assured its consumers that it did not store their financial information.
Jubilant Foodworks, the owner of the Domino’s India brand, has notified its customers about a data breach that occurred on March 24 and exposed personal information such as postal addresses and phone numbers, among other things.
The newest development comes just days after hackers created a dark Web search engine that allowed anyone to peek at Domino’s India customer information by using their phone numbers or email addresses. Domino’s first informed the media about the data leak in April.
“Jubilant Foodworks experienced an information security incident on 24th March, 2021 wherein our systems were attacked by a hacker,” Domino’s said in an email to its customers. “We moved quickly to contain the breach and hired an external agency to do an impact assessment.”
Although Jubilant Foodworks did not specify which data had been hacked, it did state that no financial information concerning customers’ accounts had been hacked.
Domino’s stated that “Domino’s, as a policy, does not store financial details of users such as complete credit card number, CVV, passwords etc. and therefore, no such information was compromised,”
Domino’s went on to say that it had made an formal complaint “with the relevant authorities and also filed a complaint with the Cyber Crimes cell” as well as “hired a global forensic agency” to investigate the security breach. The company also wants to track down the hackers.
The breach happened in March, and Jubilant Foodworks confirmed it in April, after it was sold on the dark web. Customers were eventually notified when the hackers created a search engine using data that had previously been available for purchase. The search engine, which was first revealed on Twitter by security researcher Rajshekhar Rajaharia, is available on the dark Web and includes information such as customers’ mailing addresses, phone numbers, and longitude and latitude. According to the hackers, the search engine contained information on 180 million Domino’s India customers.
While Jubilant Foodworks stated that no financial information had been compromised, the hackers stated on the search engine that payment information and employee files would be made public soon.
It’s important to note that the data breach only affected Domino’s India, which is owned by Jubilant Foodworks, a Noida-based foodservice firm. This implies that it does not include data collected directly from Domino’s Pizza, an American pizza restaurant business. In Bangladesh, Nepal, and Sri Lanka, Jubilant Foodworks operates the Domino’s Pizza brand. The data leak, however, appears to be limited to the company’s Indian customers.