Twitter has suspended the account of Rex Mundi hacking group, which claimed responsibility for stealing 600,000 customers’ details from Domino’s Pizza last Friday.
The social network blocked the group’s account mere hours before its ultimatum deadline. Rex Mundi threatened to publish the details online if the company does not pay €30,000 by the end of Monday 16 June, using a statement published on Twitter.
The data was stolen from the French and Belgian Domino’s websites and includes customers’ names, phone numbers, email and street addresses, and passwords.
— Rex Mundi (@RexMundi_Anon) June 13, 2014
It is currently unclear how the alleged breach occurred, though Rex Mundi claimed it was due to Domino’s lax website security practices.
— Rex Mundi (@RexMundi_Anon) June 14, 2014
Rex Mundi has since posted regular updates on Twitter, threatening Domino’s that it will release the data if it fails to deliver the cash.
Reminder to all @dominos_pizzafr customers: if the company doesn’t start paying us, we will release your data tonight.
— Rex Mundi (@RexMundi_Anon) June 16, 2014
Domino’s confirmed that a limited breach did occur, but promised that no financial data was compromised. The firm said: “The data hacking is isolated to the Domino’s franchise in France and Belgium, and no customer credit card or financial information was compromised.
“Domino’s customers in the UK and Republic of Ireland are not affected by this incident. The security of customer information is very important to us. We regularly test our UK website for penetration as part of the ongoing rigorous checks and continual routine maintenance of our online operations.”
Security firm Avast revealed hackers had successfully stolen the personal details of 400,000 customers in May while eBay, Spotify and Office were all also hit.
The commonality of data breaches has led many security experts and analysts to view them as one of the biggest threats facing businesses.
Research from PwC and the UK Department for Business, Innovation and Skills (BIS) reported that each successful breach costs firms as much as £1.15m.