Technology
Not even your Dunkin’ Donuts Perks account is safe from hackers
/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fimage%2F890597%2F850c5c3f-f0a7-4183-aecc-c68c2655b244.jpg)
Image: Spencer Platt / getty
2018-11-29 19:40:49 UTCWhat is this world coming to.
In a troubling sign of these cybercrime-friendly times, it turns out that not even your Dunkin’ Donuts Perks account is safe from hackers. And, as these things tend to go, that could have broad ramifications for much more than just customers’ sweet treats.
For those not in the know, a Dunkin’ Perks account and accompanying app can be used to accrue points toward free drinks, score “treats and goodies,” and order your daily java in advance. It’s a pretty standard customer loyalty program, and many people participating likely don’t give it much thought.
They may need to now. According to a statement issued by the company, hackers successfully managed to gain access to Perks accounts — although to what end exactly is unclear. Dunkin’ says hackers may have been able to get the first and last names, email addresses, 16-digit DD Perks account numbers, and DD Perks QR codes of some customers.
“Although Dunkin’ did not experience a data security breach involving its internal systems,” noted the statement, “we’ve been informed that third parties obtained usernames and passwords through other companies’ security breaches and used this information to log into some Dunkin’ DD Perks accounts.”
Importantly, if you reuse your Perks password for other online accounts (which you should obviously never do), hackers also might have been able to take that info — in conjunction with your email address — and gain access to your non-doughnut related accounts.
This is bad, and Dunkin’s statement highlights that very problem.
“As always, we strongly recommend that our guests create unique passwords for their DD Perks accounts, and do not reuse passwords used for their other unrelated online accounts.”
Sage security advice from the East Coast doughnut king.
Dunkin’ says it learned of the security problem on Oct. 31, and forced password resets for all the customers it believes were affected. Why it’s just now notifying customers of the security incident isn’t quite clear, but better late than never. That is, unless over the course of the last month some nefarious individual used your Perks password to access your email or bank account. Then a more timely heads up could have been quite helpful.
Either way, America will continue to run on Dunkin’ — and, perhaps for the time being, so will some hackers.
!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?
n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
n.push=n;n.loaded=!0;n.version=’2.0′;n.queue=[];t=b.createElement(e);t.async=!0;
t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,
document,’script’,’https://connect.facebook.net/en_US/fbevents.js’);
fbq(‘init’, ‘1453039084979896’);
if (window._geo == ‘GB’) {
fbq(‘init’, ‘322220058389212’);
}
if (window.mashKit) {
mashKit.gdpr.trackerFactory(function() {
fbq(‘track’, “PageView”);
}).render();
}
2024: A year of digital organizing from Palestine to X
Should you buy the 2024 Kindle Paperwhite Signature Edition?
Mars is littered with junk. Historians want to save it.
‘The Wild Robot’ and ‘Flow’ are quietly revolutionary climate change films
Review: Is the $499 Bose Smart Soundbar worth it?
CES 2025 preview: What to expect
‘The Room Next Door’ review: Tilda Swinton and Julianne Moore are magnificent
Polyamorous influencer breakups: What happens when hypervisible relationships end
‘The Last Showgirl’ review: Pamela Anderson leads a shattering ensemble as an aging burlesque entertainer
OpenAI’s plan to make ChatGPT the ‘everything app’ has never been more clear
Black Friday Ninja deals: Ninja Slushi in stock, plus the Creami and air fryers on sale
Intel’s 20-year-old AI ethicist, who graduated high school at 11, discusses the future
Yoto Player review: This screen-free speaker keeps kids entertained and engaged
‘A Complete Unknown’ review: Timothée Chalamet infuriates as Bob Dylan
Bluesky can learn from Twitter’s early mistakes
Greatest Cyber Monday streaming deals 2024: Save up to 90% on Hulu, Peacock
HP Omen 17 review: This gaming laptop stays cool under pressure
Greatest post-Cyber Monday deals 2024: Shop Amazon, Greatest Buy, Target, more
Apple Black Friday deals 2024: Amazon has record-low prices
Amazon Black Friday laptop deals: Shop record lows on M3 MacBook Air, Microsoft Surface Laptop 7
2024: A year of digital organizing from Palestine to X
Should you buy the 2024 Kindle Paperwhite Signature Edition?
Mars is littered with junk. Historians want to save it.
‘The Wild Robot’ and ‘Flow’ are quietly revolutionary climate change films
Review: Is the $499 Bose Smart Soundbar worth it?
CES 2025 preview: What to expect
‘The Room Next Door’ review: Tilda Swinton and Julianne Moore are magnificent
Polyamorous influencer breakups: What happens when hypervisible relationships end
‘The Last Showgirl’ review: Pamela Anderson leads a shattering ensemble as an aging burlesque entertainer
OpenAI’s plan to make ChatGPT the ‘everything app’ has never been more clear
-
Entertainment7 days agoWordPress.org’s login page demands you pledge loyalty to pineapple pizza
-
Entertainment6 days ago‘Mufasa: The Lion King’ review: Can Barry Jenkins break the Disney machine?
-
Entertainment5 days agoOpenAI’s plan to make ChatGPT the ‘everything app’ has never been more clear
-
Entertainment4 days ago‘The Last Showgirl’ review: Pamela Anderson leads a shattering ensemble as an aging burlesque entertainer
-
Entertainment5 days agoHow to watch NFL Christmas Gameday and Beyoncé halftime
-
Entertainment4 days agoPolyamorous influencer breakups: What happens when hypervisible relationships end
-
Entertainment3 days ago‘The Room Next Door’ review: Tilda Swinton and Julianne Moore are magnificent
-
Entertainment3 days agoCES 2025 preview: What to expect
