Woolworths is reporting that over 2.2 million Aussie users’ data has been breached in what appears to be a coordinated hack.
Woolworths is reporting that over 2.2 million users’ data has been compromised in a cyberattack on MyDeal. According to the company, a ‘compromised user credential’ that was used to access its systems left millions of users’ data at risk.
In a statement, the company assured people that the MyDeal website and app remained safe, as did other Woolworths subsidiaries. They also added that no customer passwords or payment details were compromised, since MyDeal does not store payment details, drivers’ licence, or passport details.
So far, compromised data seems to be limited to names, emails, phone numbers, and delivery addresses. In some cases, dates of birth have also been accessed. In the coming weeks, impacted customers will be contacted by MyDeal for further steps.
“MyDeal customers who are not contacted by MyDeal have not had their details accessed in the breach.” a statement from the company read. Woolworths also added that they are cooperating with authorities in investigating the breach.
“Woolworths Group and MyDeal have also commenced engagement with relevant regulatory authorities and government agencies.” the statement said.
News of the attack comes shortly after an Optus data breach compromised sensitive details of nearly 10 million Aussies, including their drivers’ licence and passport numbers.
Love Tech?
Get the latest Tech news, features, updates and giveaways straight to your inbox Learn more
Shortly after, state governments announced that all Australians who had had their data compromised in the breach would get new drivers’ licence numbers. Optus was also directed to bear the costs for the nationwide change.
For more on this topic, follow the Tech Observer.