Starbucks Suffers Data Breach
September 23rd, 2022 - Written By CyberLabs
The Straits Times published an article on a data breach involving a US coffee shop company Starbucks that affected the personal information of 330,000 Singaporean consumers on September 17, 2022. Starbucks operates 33,833 outlets across 80 nations and is one of the largest coffeehouse chain in the world.
Threat actors advertised the database of the company, which contained 330,000 user records, for sale on a well-known hacking site on September 10. Name, gender, date of birth, mobile number, email address, and home address are among the details that have been compromised. The business informed each of the impacted consumers by letter as soon as it was made aware of the occurrence.
Forum post selling database contents (Source: The Straits Times)
Starbucks has opened an inquiry and reported the breach to the Personal Data Protection Commission. Customers who made orders or purchases from Singaporean online stores through the company’s mobile app are primarily affected by the incident. However, the compromise did not impact consumers’ credit card details, rewards memberships, or account passwords. Threat actors also advertised four other copies for sale in addition to selling one copy of the stolen data for $3,500.
This strategy increases the possibility that Starbucks Singapore consumers will become the victims of phishing, social engineering, and scams. The company warned its impacted clients to update their passwords and to be careful in case of phishing attacks.
Source
https://www.straitstimes.com/singapore/330000-starbucks-customers-data-leaked-sold-online-for-3500
Recent Breach,
