Users of Chipotle's mobile ordering app claim their accounts have been compromised, allowing others to use the hacked accounts to order and pay for deliveries from the popular burrito chain. However, the company says it sees no evidence of any data breach.
A Reddit user from Arizona wrote earlier this year that they had woken up to an alert that their account had been used to make a purchase two states and several hundred miles away in Houston, Texas. "We have no indication of any breach of Chipotle’s databases or systems," a rep for Chipotle told Newsweek when contacted on Thursday for comment.
"We are among the many retail, hotel and restaurant companies affected by credential stuffing," the Chipotle spokesperson told Newsweek."If a customer is ever concerned about information security, they should contact our customer support team at CustomerServiceTeam@chipotle.com," said the company rep.
One way for companies to reduce the possibility of their customers' app accounts from being misused in this way is to require — or at least allow — two-factor authentication on purchases. That means that the burrito bandit would not be able to place the order without also having access to the customer's device. The Chipotle rep declined to discuss security matters when asked by TechCrunch about adding two-factor.
1. Make sure you use different login credentials on each app. Using the same login on even just two apps or websites significantly increases your chance of being a victim of credential stuffing. While some might complain about having to make sure their passwords are all different, they won't regret it the next time they read one of these stories and see they were not affected.
Yep. Happened to me last night AND today. Didn’t notice until a fraud alert from my bank. Reached out to chipotle. No response. Had to cancel my card.
*Should the FBI step in and 'spill the beans?'
That's just totally horrible! ...That people have to use a Chipotle App! IFB comedy
Business Business Latest News, Business Business Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Source: CNBC - 🏆 12. / 72 Read more »