McDonalds App Users Hatin’ It after Being Hacked by Hungry Hamburglars

upnorth

upnorth

Moderator
Thread author
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
Content source
https://nakedsecurity.sophos.com/2019/02/11/mcdonalds-app-users-hatin-it-after-losing-hundreds-to-thieves/
At least two users of the McDonalds mobile app aren’t lovin’ it after thieves hijacked their accounts and ordered hundreds of dollars of food for themselves.

Lauren Taylor of Halifax, Nova Scotia was shocked to find her bank account almost empty after someone used the McDonald’s mobile app to buy $500 of fast food over 1200 kilometres away in Montreal, Quebec. The crook managed to compromise her account to run up the bills in a five-day period from 25-29 January. Every time the hungry hijacker scored a Big Mac and fries, a receipt showed up in her inbox. Unfortunately, she doesn’t check her email that regularly. By the time she did, she had just $1.99 left. She explained that she had to find rent, and presumably someone in Montreal had to find a larger pair of pants with an elasticated waist.

After ordering food through the McDonalds app, customers can check in when they reach the restaurant. The app then charges the debit card that they registered onto the system, and a member of staff will deliver it to them curbside. To get the food, the customer has to provide a four-digit code given to them by the app. McDonalds Canada denied that there was a security problem with the app in an email to Canada’s CBC. A spokesperson said: We take appropriate measures to keep personal information secure, including on our app. Just like any other online activity, we recommend that our guests use our app diligently by not sharing their passwords with others, creating unique passwords and changing passwords frequently. Taylor claims that she did, though, arguing that she changes her passwords regularly, never shares them, and keeps them strong. The McDonalds app requires passwords to be eight to 12 characters long, with upper and lowercase characters and at least one number.

Taylor’s isn’t the only case. CTV also found a woman in Ontario who saw McDonalds purchases in another city racked up on her account. Then there were another two incidents involving Halifax residents Tracy Creaser and Brett O’Donnell.
Click to expand...
 
  • Like
Reactions: Weebarra, bribon77, silversurfer and 4 others
SumTingWong

SumTingWong

Level 28
Verified
Top Poster
Well-known
Apr 2, 2018
1,713
Hackers:
maxresdefault.jpg
 
  • HaHa
  • Like
Reactions: RXZ6Q, Weebarra, bribon77 and 1 other person
You must log in or register to reply here.

Similar threads

H
    • Wow
    • Like
    • Sad
Victim loses over $20k from credit card and bank accounts after downloading third-party app
Replies
6
Views
1,427
News Archive
Digmor Crusher
Digmor Crusher
H
    • Like
Victim buys durians online, loses $50k life savings after downloading third-party app
Replies
3
Views
1,299
News Archive
Zero Knowledge
Z
Viking
    • Wow
Security News McDonald’s hit by ‘technology outage’ in UK, Australia, Japan and China
Replies
1
Views
639
Security News
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top