Threat Actor: Sp1d3r | Sp1d3r
Victim: Jollibee | Jollibee
Price: $40,000 USD
Exfiltrated Data Type: Personal data of 32 million customers and 650 million records related to food delivery operations.
Key Points :
- The data breach involves Jollibee, the Filipino fast-food giant.
- The compromised data includes personal information of 32 million customers and 650 million records related to food delivery operations.
- The hacker is offering the entire dataset for sale at $40,000 USD.
Manila, Philippines – Earlier today, the Deep Web Konek Team was notified that a data breach involving Jollibee, the Filipino fast-food giant, has been posted on a cybercrime forum. The post, authored by a user with the handle Sp1d3r, claims to possess personal data of 32 million customers and 650 million records related to the company’s food delivery operations.
Jollibee, with over 1,500 outlets worldwide, has a strong presence in Southeast Asia, East Asia, the Middle East, North America, and Europe. The compromised data reportedly includes sensitive customer information such as names, addresses, phone numbers, email addresses, and hashed passwords. Additionally, extensive records of food delivery orders, sales transactions, and service details have been exposed.
Based on a sample file provided by the hacker, the compromised data includes highly sensitive information such as:
- ID numbers
- Facebook IDs and tokens
- Email addresses and old email addresses
- Card numbers
- Passwords
- Full names (first, middle, last)
- Gender
- Birth dates
- Civil status
- Mobile and landline numbers
- Full address details (house, building, street, barangay, city)
- Last login dates
- Various account codes
- Dates related to account activity (added, updated)
- Additional personal details (guardian information, vehicle ownership, occupation, number of children, etc.)
The post, uploaded just hours ago, offers the entire dataset for sale at $40,000 USD, providing an XMPP contact for potential buyers. The compromised data also spans multiple tables, indicating a broad and deep breach of Jollibee’s systems. Notable affected tables include:
- GLOBAL.GLOBAL_SUMMARY_SALES.csv
- HAPPYPLUS.CARDREPORT.csv
- HAPPYPLUS.EAM_CARDNUMBERS.csv
- IRONMAN_CUSTOMER_ADDRESS.csv
- IRONMAN_CUSTOMERS.csv
- POSNET_NA_PRD.POSNET_MONITOR_DETAILS.csv
- SERVICENOW.INCIDENT.csv
- TILLSTER.CUSTOMER.csv
- GRABFOOD_STG_TRANSACTION.csv
Jollibee Foods Corporation has not yet released an official statement regarding the breach. However, the exposure of such a vast amount of data underscores the urgent need for robust cybersecurity measures in the fast-food and delivery sectors, which routinely handle large volumes of personal and transactional information.
This breach adds to the growing list of cyberattacks targeting major corporations worldwide, highlighting the persistent threat posed by cybercriminals and the importance of proactive security strategies to safeguard consumer data.
As investigations continue, Jollibee customers and stakeholders will be keenly awaiting further details on the extent of the breach and measures taken to mitigate its impact.
Source: https://kukublanph.data.blog/2024/06/20/alleged-data-breach-hits-jollibee-food-delivery-service/