Donut neglect customer protection: Dunkin’ sued over cyberattacks

Donut neglect customer protection: Dunkin’ sued over cyberattacks

Dunkin donuts sued over cyberattacks

The parent of Dunkin’ Donuts was sued on Thursday by New York Attorney General Letitia James.

She accused the chain of failing to protect hundreds of thousands of customers. Their accounts were allegedly targeted in a series of “brute force” cyberattacks.

James said Dunkin’ Brands Group Inc did nothing in 2015 to protect 19,715 customers. Their accounts had been targeted in a single five-day period, after learning about the problem from its own app developer.

She said the Canton, Massachusetts-based company failed to notify affected customers of the breaches. Dunkin’ Donuts also failed to reset customers passwords or freeze their Dunkin’ Donuts cards.

James added that Dunkin’ failed to adopt appropriate safeguards. These would help to limit future attacks, despite customer reports of continuing fraud on their accounts.

That failure came to roost in late 2018. More than 300,000 customer accounts were accessed in new attacks, James said in the lawsuit. This concerns accounts created through Dunkin’s website or free mobile app.

“Dunkin’ failed to protect the security of its customers,” James said in a statement. “Dunkin’ sat idly by, putting customers at risk.” The company did not immediately respond to a request for comment.

James’ lawsuit filed in a New York state court in Manhattan seeks civil fines and restitution. It also seeks other remedies for alleged violations of state consumer protection and business laws.

“Dunkin’s representation to consumers that it used reasonable safeguards to protect consumers’ personal information, and the company’s statements concerning the 2018 breach, were false and misleading,” the complaint said.

Source: Reuters New York, 26 September

Reporting: Jonathan Stempel

Copyright Lyonsdown Limited 2021

Top Articles

RockYou2021 data leak: 8.4 billion passwords compromised

A report shows that 100GB of data which includes 8.4 billion passwords have been recently leaked on the internet, people are being encouraged to secure their accounts.

Hackers Breach Electronic Arts & Steal Game Code

Electronic Arts, one of the world's biggest video game publishers including games such as FIFA, Madden, Sims and Medal of Honor, are the latest company to be hacked.

JBS Foods paid £7.7m in ransom to REvil ransomware gang

JBS Foods, the world’s largest processor of beef and poultry products, has admitted to paying a ransom of $11 million to cyber criminals, a week after it announced that operations…

Related Articles

[s2Member-Login login_redirect=”https://www.teiss.co.uk” /]