Users of the Dunkin’ Donuts DD Perks account may have fallen victim to a data breach that was uncovered on Oct. 31 and announced publically Nov. 29.
The breach included customer names, email addresses, and DD Perks account numbers or codes for up to 9 million members. DD Perks members whose information fell victim to the breach were those who use the same passwords for multiple accounts, as the type of attack was a password reuse attack, where the cyber criminals attempted to use previously stolen login credentials to tap into DD Perks accounts.
While the attack on the DD Perks program was not a product of an internal system error by Dunkin’ Donuts, it shows how data breaches that hit other companies can then be utilized to attack businesses independent from the original attack. Additionally, this type of hack shows the importance of two-factor authentication and using unique login credentials for all accounts, both professionally and personally.
Preventing a cyber attack takes more than just good luck for your business. A great first step in ensuring your business is safe from cyber criminals is with Archetype SC’s Security Risk & Vulnerability Assessment, or SRVA. SRVA is a combination of a vulnerability scan and security assessment to show key issues facing your network, which are delivered in a comprehensive report broken down by severity. A member of Archetype SC’s expert security team will also present a remediation plan to improve your businesses security posture.