ADVERTISEMENT
Q
MENU
Trending
Digital Signage Large Events
Christie Digital Q&A
Bose Professional Sales Model
Velocity Solutions
Swim With Purpose
Launch of AVCT
Philips Cast Server
Cellphone Signal Booster
CI Exclusive Q&A: Resideo to Acquire Snap
Mental Health
InfoComm 2024
Digital Signage Program InfoComm
Powersoft Unica Amplifiers Neches Arena
AVPro Edge HDMI 2.1b Distribution Amplifiers
New York Giants NFL Draft Crestron
Jay Rogina XTEN-AV Advisory Board Member
Commercial Integrator Expo & IMCCA
Screen Innovations CarbonBlack Holographic Screens
Peerless-AV Universal DVLED Mounting System
Sound Masking Survey
CrimsonAV Welcomes Matthew Sulkowski
2024 BEST Awards
The Three-Legged Stool of Quality: How Companies Should Invest in Hardware, Software & Experiences
Digital Signage & Videowall Report
Absen’s Commitment to Integrator Investment
Resideo to Acquire Snap One
Courtroom AV
Neoti PANTONE Validation
AVPro Edge Investment in AudioControl
Listen Technologies Wi-Fi Assistive Listening System
InfoComm Esports Live 2.0
Biamp + AVer
Crestron SAVe Partnership
NSCA XBO Conference
The ASCII Group 40th Anniversary
Kaleidescape Enters Cinema Market
Amplifiers
ISC West
New CI Website
Spatial Reality
NDI 6
AV Living Legends #46

Apps Like Instacart Are Incredibly Useful, But How Can They Prevent Hacking?

Published: 2020-07-31Author: Adam Forziati
Hacker with computer symbolizing cyberattacks against Tech Service Providers, Microsoft Okta Lapsus$

Grocery delivery app Instacart may have been hacked — affecting over 275,000 users.

According to a recent BuzzFeed report, the names, last four digits of credit card numbers, and order histories are popping up on dark web markets as a result of the supposed Instacart hack.

The report says sellers in more than one dark web store offered personal data from over 275,000 accounts, though some of those may be duplicates. An Instacart spokesperson said the app has “millions of customers” as of April.

More from BuzzFeed:

“We are not aware of any data breach at this time. We take data protection and privacy very seriously,” an Instacart spokesperson told BuzzFeed News.


FEATURED REPORT

“Outside of the Instacart platform, attackers may target individuals using phishing or credential stuffing techniques. In instances where we believe a customer’s account may have been compromised through an external phishing scam outside of the Instacart platform or other action, we proactively communicate to our customers to auto-force them to update their password.”

“It’s looking recent and totally legit,” Nick Espinosa, the head of cybersecurity firm Security Fanatics, told BuzzFeed News after reviewing the accounts being sold.

Instacart has denied any hack of its data, but the report continues to mount evidence that it did in fact happen. It cites two women whose information matches what appears on the dark web — credit card numbers included.

When Buzzfeed reached out for comment, an Instacart customer support agent told them that the issue likely has to do with password reuse.

This could be a valid point, but the person who contacted the support line claims they do not reuse any passwords.

The lesson once again learned from the Instacart hacking: apps for everything from grocery shopping to audio distribution can be incredibly useful and convenient, but cyber security practices have to catch up to a point where we can use them with higher confidence.

Cyber security resources for professionals

This post premiered on our sister site, MyTechDecisions.

Posted in: Insights

Tagged with: Cybersecurity

ADVERTISEMENT
ADVERTISEMENT

Related Posts

The Future of Digital Signage at Large Events

DLR Group’s Raymond Kent: AV Living Legends #47

Navigating Mental Disintegration: Prioritizing Mental Health

The Three-Legged Stool of Quality: How Companies Should Invest in Hardware, Software & Experiences

B2B Marketing Exchange
B2B Marketing Exchange East