Some users of Chipotle app say accounts have been hacked; company says there are no signs of breach

  • 📰 Newsweek
  • ⏱ Reading Time:
  • 76 sec. here
  • 3 min. at publisher
  • 📊 Quality Score:
  • News: 34%
  • Publisher: 52%

Business News News

Business Business Latest News,Business Business Headlines

'We have no indication of any breach of Chipotle’s databases or systems,' a rep for Chipotle told Newsweek about a rash of recent complaints of compromised accounts.

Users of Chipotle's mobile ordering app claim their accounts have been compromised, allowing others to use the hacked accounts to order and pay for deliveries from the popular burrito chain. However, the company says it sees no evidence of any data breach.

A Reddit user from Arizona wrote earlier this year that they had woken up to an alert that their account had been used to make a purchase two states and several hundred miles away in Houston, Texas. "We have no indication of any breach of Chipotle’s databases or systems," a rep for Chipotle told Newsweek when contacted on Thursday for comment.

"We are among the many retail, hotel and restaurant companies affected by credential stuffing," the Chipotle spokesperson told Newsweek."If a customer is ever concerned about information security, they should contact our customer support team at CustomerServiceTeam@chipotle.com," said the company rep.

One way for companies to reduce the possibility of their customers' app accounts from being misused in this way is to require — or at least allow — two-factor authentication on purchases. That means that the burrito bandit would not be able to place the order without also having access to the customer's device. The Chipotle rep declined to discuss security matters when asked by TechCrunch about adding two-factor.

1. Make sure you use different login credentials on each app. Using the same login on even just two apps or websites significantly increases your chance of being a victim of credential stuffing. While some might complain about having to make sure their passwords are all different, they won't regret it the next time they read one of these stories and see they were not affected.

 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.

Yep. Happened to me last night AND today. Didn’t notice until a fraud alert from my bank. Reached out to chipotle. No response. Had to cancel my card.

*Should the FBI step in and 'spill the beans?'

That's just totally horrible! ...That people have to use a Chipotle App! IFB comedy

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 468. in BUSİNESS

Business Business Latest News, Business Business Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Italy's finance minister says there's been no US backlash after signing a deal with ChinaItaly has not felt any backlash from U.S. authorities after having agreed to be part of China's Belt and Road initiative, the country's finance minister Giovanni Tria told CNBC. Backlash will come from China, wait and watch. Italy signing on to the over leveraged Chinese economy is the best sign yet Beijing is close to collapse.
Source: CNBC - 🏆 12. / 72 Read more »