burger king, data breach

Famous fast food chain Burger King has reportedly emailed thousands of its customers with a blank order email receipt.

The blank emails started appearing around 12:15 AM Eastern Standard, leaving the customers confused about whether the fast food giant had been breached by a hacker attempting to order something off the menu or if the emails were just an honest mistake from an employee.

Burger King’s Blank Receipts

According to The Verge, several Twitter users immediately turned to the social media network as they were confused over their blank emails.

Some customers claimed that they got two Burger King emails. The order emails were blank, and the sender was Burger King’s promotional marketing email address.

There is no indication that the fast food giant has been breached, according to Fortune.

A lot of customers who have received the blank emails do not even remember creating an account, so it could just be a system change that went wrong and blasted out blank orders to Burger King’s entire marketing database.

Burger King’s Data Breach

This is not the first time that Burger King has faced issues with its security.

In 2019, 37,900 records of Kool King Ship customers were discovered by an unprotected Elasticsearch cluster. The online shop is tailored to be used by children who bought Burger King menus.

Bob Diachenko, a Security Discovery researcher, discovered that the data was leaked because the database storing it was misconfigured, allowing anyone to find it to get to the records stored within, according to Bleeping Computer.

Since the database was not secured, anyone who reached it could edit it, download it, or even destroy it without admin credentials.

According to the research, the databases contained plain text data, which was left out in the open since April.

The member records in Burger King’s online ship contained personally identifiable information like emails, passwords, names, phone numbers, date of birth, voucher codes, and links to stored certificates.

Aside from finding the thousands of leaked member records, Diachenko also discovered the CRM access details for 25 administrators of the Burger King staff. The details include names, emails, and passwords.

In addition, the data leak also included some extra information in the form of e-commerce CRM backend logs, with debug information and internal details.

Unprotected Databases

Since 2019, ElasticSearch databases have leaked more than 108 million bets at different online casinos exposing the PII data, sensitive legal documents, and profiles of 33 million Chinese people looking for a job.

Also, more than 114 million records of US citizens and companies and over 32 million records of SKY Brazil customers were affected by the data leaks that were caused by unsecured ElasticSearch databases in 2018.

As the developers of ElasticSearch detailed in 2013, the servers are never to be exposed to the Internet, seeing that they can only be accessed on the internal network.

Elastic also advises the administrators to set passwords for the server’s built-in users to secure the stack of ElasticSearch by implementing measures for encrypting communications, role-based access control, auditing, and IP filtering, as well as to configure the ElasticSearch installation before deployment.

Written by Sophie Webster

TECH NEWS RELATED

Chernobyl black frogs reveal evolution in action

Extremes of the colour gradient of the Eastern San Antonio frog (Hyla orientalis). On the left, a specimen captured in Chernobyl inside the high contamination zone; on the right, a specimen captured outside the Exclusion Zone. Credit: Germán Orizaola/Pablo Burraco, CC BY The accident at reactor four of the ...

View more: Chernobyl black frogs reveal evolution in action

Virtual Labrador could help researchers tackle dog bites

Credit: University of Liverpool A virtual reality dog could one day be used as an educational tool to help prevent dog bites, thanks to an innovative project led by researchers at the University of Liverpool. As part of a new pilot study, veterinary researchers have tested a virtual reality ...

View more: Virtual Labrador could help researchers tackle dog bites

Good coffee, bad coffee: The curious tastes of cultural omnivores

Cultural omnivores are economically and culturally privileged people who are able to enjoy both highbrow and lowbrow activities simultaneously. Credit: Shutterstock Some people who love classical music also dance to Celine Dion. Others are craft beer aficionados who also enjoy a cold bottle of mass market beer at the ...

View more: Good coffee, bad coffee: The curious tastes of cultural omnivores

We tend to underestimate our future expenses. Here's one way to prevent that

Spending totals indicate mean expenses, and are rounded to the nearest Canadian dollar amount. Credit: Chart: The Conversation, CC-BY-ND Source: Howard et al., 2022 When asked to estimate how much money they would spend in the future, people underpredicted the total amount by more than C$400 per month. However, ...

View more: We tend to underestimate our future expenses. Here's one way to prevent that

From super-sealings to the detection of dangerous cables thanks to ion beams

The SEM images show the cross-sections of NBR and SBR elastomers exposed to the He + ion beam with a fluency of 1×10^17 cm-2.Irradiation with a high-energy ion beam causes cross-linking of the polymer surface layer. The core of the non-ionized material remains flexible and can stretch the rigid ...

View more: From super-sealings to the detection of dangerous cables thanks to ion beams

'Decarbonization is too expensive': How to sell climate change action to bean counters

Credit: Scharfsinn/Shutterstock The three most prevalent myths about tackling climate change allege that transitioning to renewable energy jacks up household bills, requires massive amounts of government subsidy and creates mass unemployment. These concerns are all (thankfully) false. With fellow academics, I studied instances from the past 30 years when ...

View more: 'Decarbonization is too expensive': How to sell climate change action to bean counters

Mystery of extinct New Zealand fish unraveled

Dr. Nic Rawlence and Professor Gerard Closs with an upokororo/New Zealand grayling specimen at Otago Museum. Credit: University of Otago Nearly 100 years after its last confirmed sighting, University of Otago researchers have revealed the genealogical story of the upokororo or New Zealand grayling. Study co-author Dr. Nic Rawlence, ...

View more: Mystery of extinct New Zealand fish unraveled

Chess: How to spot a potential cheat

Credit: Hutsuliak Dmytro/Shutterstock A few years ago, the chess website Chess.com temporarily banned U.S. grandmaster Hans Niemann for playing chess moves online that the site suspected had been suggested to him by a computer program. It had reportedly previously banned his mentor Maxim Dlugy. And at the Sinquefield Cup ...

View more: Chess: How to spot a potential cheat

Leicester space tech sector gets £19.4m government funding

Scientists develop tech to manage two-way power flow to commercial buildings

Elastic nozzles could create more stable liquid jets

Surveying an island invaded by toads and frogs

Container-based method resolves challenges in recirculating fish farming

Volvo Develops Interior Radar to Prevent Accidental Child Lock-Ins

Four Reasons to Invest In a Customer Data Platform

Australia's Smartwatch Road Rules Aim to Penalize Distracted Drivers

National Coffee Day 2022: Top Electric Kettles to Accompany You!

What Skills are Required for Blockchain Developer in 2023

What are tactical nuclear weapons? Security expert explains and assesses what they mean for the war in Ukraine

New model captures erratic speed of DNA copying proteins in bacteria

OTHER TECH NEWS

Top Car News Car News