HomeSecurity OperationsExclusive: Alleged data breach impacts over 100k users of Aussie order-ahead app...

Exclusive: Alleged data breach impacts over 100k users of Aussie order-ahead app Hey You

Published on

spot_img

A massive data breach has rocked Aussie order-ahead app Hey You, with more than 100,000 customers and partners allegedly affected by the cyberattack. The breach, which includes sensitive information such as emails and passwords, was first brought to light by a hacker who goes by the pseudonym “Billy100.”

According to reports, Billy100 posted the stolen data for sale on a popular hacking forum under the title “AUSTRALIA ORDERING DATABASE / heyyou.com.au / 202,488 lines” on 25 June. The data is divided into two sets, with one containing names and phone numbers, and the other containing usernames, emails, passwords, and addresses. While there are slight discrepancies in the number of lines in each set, it appears that each person is represented in both lists.

A concerning aspect of this breach is that some of the email addresses included in the data have not appeared in previous breaches tracked by haveibeenpwned.com, indicating the severity of the incident. Furthermore, the passwords are hashed using the SHA-1 hash function, with some already being cracked by the hacker.

Billy100 seems to have a busy schedule, as they have been selling databases almost daily since 17 June, involving various entities such as the Panamanian government, Satu Data Indonesia, and India’s eMigrate emigration system. This pattern raises concerns about the motives behind the data breaches and whether Billy100 is acting alone or as part of a larger cybercrime network.

In response to the breach, Hey You has acknowledged the situation and is currently in the process of verifying the accuracy of the stolen data. A spokesperson for Hey You emphasized the importance of password security and recommended that all customers change their passwords as a precautionary measure.

The spokesperson also reassured customers of the app’s robust data and privacy measures in place to safeguard their personal information and payment details. Hey You has pledged to work closely with authorities to investigate the breach and provide updates to affected customers as the situation develops.

Hey You, which operates in major Australian cities such as Sydney, Melbourne, Brisbane, and Perth, is a popular platform used by cafes and restaurants for pre-ordering meals and drinks. The app’s broad user base makes the data breach all the more concerning, as it potentially impacts a significant number of individuals and businesses across the country.

As cybersecurity threats continue to evolve and become more sophisticated, it is crucial for businesses and individuals to remain vigilant and take proactive steps to protect their data. The Hey You incident serves as a stark reminder of the constant threat posed by cybercriminals and the need for robust security measures to mitigate such risks.

In conclusion, the alleged data breach affecting Hey You and its customers underscores the ongoing challenges posed by cyber threats in today’s interconnected digital world. The incident highlights the importance of cybersecurity measures and serves as a wake-up call for businesses and individuals to prioritize data protection in an increasingly vulnerable online landscape.

Source link

Latest articles

Microsoft Unveils GigaWiper: A Backdoor Engineered for On-Demand Destruction

Unveiling the Capabilities of GigaWiper: A New Threat in Cybersecurity Recent findings have shed light...

The Business Case for Addressing Security Debt: A Practical Approach for CISOs

In recent discussions among Chief Information Security Officers (CISOs), a significant shift has emerged...

Barracuda Acquires Evo to Develop SMB Identity Resilience Platform

Barracuda Expands Identity Security Offerings with Acquisition of Evo Security Barracuda Networks, a prominent player...

Iran-Linked MuddyWater Espionage Campaign Targets Organizations Worldwide

A recent threat intelligence report released by WatchGuard has raised alarms about an espionage...

More like this

Microsoft Unveils GigaWiper: A Backdoor Engineered for On-Demand Destruction

Unveiling the Capabilities of GigaWiper: A New Threat in Cybersecurity Recent findings have shed light...

The Business Case for Addressing Security Debt: A Practical Approach for CISOs

In recent discussions among Chief Information Security Officers (CISOs), a significant shift has emerged...

Barracuda Acquires Evo to Develop SMB Identity Resilience Platform

Barracuda Expands Identity Security Offerings with Acquisition of Evo Security Barracuda Networks, a prominent player...