A hacking group claims to have stolen the details of more than 600,000 Domino’s Pizza customers and is threatening to release the information unless a ransom is paid.
The group, known as Rex Mundi, said the details would be released on Monday evening if they did not receive €30,000 (£24,000).
We hacked the websites of @dominos_pizzafr & Domino's Belgium, and downloaded 600,000+ customer records. More info: https://t.co/KVJ1SW7UeA
If you're a @dominos_pizzafr customer, u may want to know that we have offered Domino's not to publish your data in exchange for 30,000EUR.
The hackers say they gained access to the details through the websites of Domino’s in France and Belgium.
Fun fact: @dominos_pizzafr patched ONE vulnerability on their Belgian site, but left several other vulnerabilities in their code #fail
According to the Telegraph, the details include customers’ names, phone numbers, passwords and favourite pizza toppings.
Rex Mundi claims it contacted Domino's about the hack on Tuesday (June 10).
Domino’s France has apparently now acknowledged the hacking took place and has recommended customers change their passwords.
Reminder to all @dominos_pizzafr customers: if the company doesn't start paying us, we will release your data tonight.
Andre ten Wold, of Domino’s in The Netherlands, told Dutch newspaper De Standaard the company would not be paying the ransom and said financial data had not been taken.
"There are clear indications that something is broken on our server. The information contained in them is protected," he said.
"Financial data, such as credit cards, has not been stolen."
He revealed a complaint had also been filed with a court in Paris.