Pizza Hut Australia has reportedly suffered a major data breach, with more than one million customers believed to be affected.
According to DataBreaches.net, the hacker group ShinyHunters gained access to 30 million order records via AWS (Amazon Web Services) as well as information on more than a million Pizza Hut Australia customers between one and two months ago.
To prove their claims, the hacker group provided DataBreaches with a sample file of 200,000 records containing sensitive customer information such as names, email addresses, passwords, home addresses, mobile numbers and credit card numbers. Fortunately, the credit card numbers and passwords were encrypted, but all other fields were in plain text.
ShinyHunters are demanding $300,000 to delete the data but have reportedly not received a response. If the ransom is not paid, it is highly likely (given the group's history) that the data will be leaked or sold.
Pizza Hut Australia has yet to confirm the breach and no notice has been given to customers as yet.
SafeWise Australia has reached out to the company for comment and will update if and when we receive a response.
The alleged hack is another in a long line of data breaches targeting Australians in the last year, many of whom are still on high alert after the Optus and Medibank cyberattacks.