Thousands of customers have been embroiled in a massive cyber attack on some of Australia’s best known brands.
At least 15,000 Aussies with online accounts with eatery Guzman y Gomez, bottle shop giant Dan Murphy’s, video streaming service Binge and Event Cinemas have had their personal details compromised in the last two months in what authorities believe was a targeted attack.
It’s understood scammers bought stolen login details from overseas cyber criminals and accessed customers’ online accounts to carry out fraudulent transactions.
Impacted customers have either saved their credit card details on company websites or who have gift cards or store credit for online purchases.
More than 15,000 Aussies have been caught up in the latest cyber attack, including customers of Mexican fast food chain Guzman y Gomez
The number of affected customers continues to rise and it’s feared that many are still unaware of the fraudulent activity.
Those who use the same login details for multiple online accounts face the highest threat.
Stored PayPal accounts linked to an email and password were also compromised.
It’s alleged that some scammers shared details and receipt of their fraudulent purchases on messaging app Telegram, the Sydney Morning Herald reported.
One scammer bought almost $800 worth of alcohol from Dan Murphy’s in a single transaction.
Endeavour Group, which owns Dan Murphy’s, confirmed that a ‘small’ number of customer accounts were compromised.
‘These were obtained through unrelated third-party breaches and not due to our internal systems being compromised,’ a spokesman said.
‘Our team took immediate action and has been working with affected customers.’
Guzman y Gomez said that it “uses advanced monitoring for such attacks and proactively takes action to defend against cyber criminals to protect our guests, including notifying users of suspicious activity”.
The latest cyber attack comes days after major online retailer The Iconic was targeted.
Other companies targeted by cyber criminals in the last 18 months include Optus, Telstra and Medibank Private.
One fraudulent transaction involved almost $800 worth of alcohol from Dan Murphy’s
