A data breach incident occurred in an Australian retail marketplace known as MyDeal. This subsidiary entity enables shoppers to connect with local retailers to create an online marketplace.
Woolworth, a big-time retail company, bought most of MyDeal’s shares last September. Fortunately, the retail giant is safe from the attack since its systems were on a different platform during the hacking incident.
Last week, the online retailing platform confirmed that it experienced a data breach after an attacker utilised several compromised credentials to access the company’s Customer Relationship Management (CRM) system. The hack allowed the threat actors to review and exfiltrate customer data.
MyDeal revealed that the data breach incident might affect a couple of million users.
According to MyDeal, more than 2 million users may have been affected by the data breach since information such as names, phone numbers, delivery addresses, email addresses, and dates of birth were exposed by the attack.
In addition, the company noted that half of the affected users were only affected by the breach through the exposure of their email addresses. Hence, no other information is leaked during the attack.
Fortunately, MyDeal revealed that the breach didn’t include government IDs, account passwords, or payment information in the leak. Furthermore, the company has started to send notifications and advisories to the affected customers.
The attackers sell troves of stolen data from MyDeal on a hacking forum with a minimum price of $600.
The threat actors then claimed that the information contained 1 million entries, which would gradually increase after examining the remaining database. The adversaries proved their attack was actual by releasing screenshots of the alleged company’s Confluence server and a sign-in prompt for the AWS account.
Experts suggest that MyDeal users should reset their passwords even though they are not affected by the breach. Lastly, all MyDeal customers should be wary of unwanted messages or emails, as threat actors commonly use stolen data for phishing attacks.
