Jump to content

Welcome to nsane.forums

Welcome to nsane.forums, like most online communities you need to register to view parts of our community or to make contributions, but don't worry: this is a free and simple process that requires minimal information. Be a part of nsane.forums by signing in or creating an account.

  • Access special members only forums
  • Start new topics and reply to others
  • Subscribe to topics and forums to get automatic updates

 

Please note: Unfortunetely due to some server side issues, registration via Hotmail / Outlook email addresses do not work, members are requested to use some other email addresses like Gmail to register here.


Sign in to follow this  
Batu69

McD app ‘leaks’ info of 2.2 million users, company denies it

Recommended Posts

Batu69    18,607
Batu69

NEW DELHI: A burger can cost you a lot.
Personal data of more than 2.2 million users has leaked from McDonald's India app, McDelivery, cyber security firm Fallible said.


The leaked data includes name, phone number, email addresses, home addresses, accurate home-coordinates and social profile links.
Cyber security experts said hackers could use the information to access financial details of users, including credit/debit card information and e-wallet details.


The compromised app and website of the US burger chain is operated by Westlife Development, which runs McDonald's operations in the south and west India.

 

The official spokesperson of McDonald's India (west & south) said, "We would like to inform our users that our website and app does not store any sensitive financial data of users like credit card details, wallets passwords or bank account information. The website and app has always been safe to use, and we update security measure on regular basis. As a precautionary measure, we would also urge our users to update the McDelivery app on their devices. At McDonald's India, we are committed to our users' data privacy and protection."

Amit Singh, co-founder of Yitsol, which provides cloud migration services, said, "Security is the last priority of many firms in India. I know of incidents in Hyderabad, where hackers stole user information from startups and demanded ransom in Bitcoins."

With the country going digital and app usage on the rise companies could not afford to relax when it comes to cyber security, he said.
Fallible said it contacted McDelivery about the data leak on February 7 and received an acknowledgement from a senior IT manager at the firm. "The McDonald's fix is incomplete and the endpoint is still leaking data," Fallible wrote on its blog on Saturday.

 

Article source

  • Like 3

Share this post


Link to post
Share on other sites
Pequi    696
Pequi

Well, we have "Microsoft Works", "Google Privacy", so I suppose a cyber security firm that announces it's "Fallible" is not so ludicrous.

As to MacDonald's, if it's true, this will be a bigger leak than Yahoo. At least they REALLY have that many customers....

;)

 

  • Like 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

×