Australian retail market MyDeal has confirmed that it has suffered a data breach affecting more than two million customers.
The company contacted all affected customers explaining the incident, saying that an unknown attacker breached its systems and accessed customer identity data.
according to Computer (Opens in a new tab)the threat actor was able to obtain the login information for the MyDeal CRM (crms (Opens in a new tab)), and used it to extract sensitive data belonging to about 2.2 million users.
MyDeal data has been sold
That data included names, email addresses, phone numbers, postal addresses, and, for some, dates of birth. For a smaller subset of users (1.2 million), hackers were only able to obtain email addresses.
While details on the perpetrators are scarce, what they are doing with the data is clear: try to sell it on an underground forum for $600.
According to the company, the number of entries in the database, which the attacker is still analyzing, is currently more than one million, with the number expected to increase.
To validate the attack, the attackers posted screenshots of MyDeal Confluence servers, as well as a single sign-on (SSO) claim for their account with Amazon Web Services (Aws (Opens in a new tab)).
MyDeal also said that the attackers did not obtain any payment information, identity documents, data or passwords. However, it does suggest users to reset their passwords anyway. Such an attack would not have been prevented even with The best password managers.
MyDeal is an Australian retail marketplace that seeks to connect local retailers with potential shoppers.
It was acquired by Woolworths in September 2022, but the supermarket chain claims that its systems are on a different platform, and therefore completely safe from attackers.
Although the scammers may not have obtained your payment data or passwords, they still have enough information about identity theft (Opens in a new tab) or phishing attacks, so we urge users to be vigilant.
