Pizza Hut Australia is grappling with a significant data breach that has reportedly impacted more than one million customers. The breach is attributed to the hacker group ShinyHunters, who allegedly accessed a whopping 30 million order records through Amazon Web Services (AWS).
Additionally, sensitive customer information, including names, email addresses, passwords, home addresses, mobile numbers, and credit card numbers, was obtained. Fortunately, the credit card numbers and passwords were encrypted, but all other data fields were in plain text.
To substantiate their claims, ShinyHunters provided DataBreaches.net with a sample file containing 200,000 records of customer data. The hacker group has demanded a $300,000 ransom for deleting the data, but there’s been no confirmation of a response.
Given ShinyHunters’ history, there is a high likelihood that the data will be either leaked or sold if the ransom isn’t paid. Pizza Hut Australia has not officially confirmed the breach, and customers have yet to be notified.
This breach is part of a concerning trend of data breaches targeting Australians over the past year, with people remaining vigilant following previous cyberattacks on companies like Optus and Medibank. SafeWise Australia has sought comment from Pizza Hut and is awaiting a response to provide further updates.
