Australian wine company Vinomofo suffered a cyberattack, putting the data of 500,000 customers at risk. The attack was targeted at the customers of the wine company, including their names, addresses, DOB, email addresses, numbers, genders, and other private data. However, the company claims the risk is low since they do not store any financial details, credit card numbers, driver’s licenses, or other sensitive customer data.
It is a rare occurrence when threat actors decide to launch attacks on wine companies. The famous Brown-Forman incident of 2020 is an exception where the Sodinokibi (REvil) ransomware operators stole 1TB of data from the wine manufacturer, including confidential information about employees, company documents, agreements, contracts, financial details, and internal conversations.
Vinomofo data breach: 500,000 customers at risk
Vinomofo’s chief executive, Paul Edginton, sent a statement to the company’s customers, informing them of the cybersecurity incident and what happened, The Guardian reported. In the statement, Edginton mentioned the threat actor’s intent adding that an unauthorized third-party actor accessed the company’s database using a testing platform that doesn’t link to the company’s official website.
Edginton further assured the customers that the company did not hold the identity or financial data of customers and members. Since the data does not contain any passwords or financial information, the wine company assured the customers that the cyberattack wouldn’t disrupt the customers and the functioning of the company. Vinomofo has urged customers to remain alert to any increased scam activity.
The wine company did not reveal the name of the threat actor. However, it reported the incident to the Australian Cyber Security Centre (ACSC) and the Office of the Australian Information Commissioner (OAIC). The wine company is also working with cyber security experts, such as IDCARE, to investigate the breach and strengthen its security systems.
Moreover, the company has suggested that its customers change their Vinomofo account passwords as an extra precaution despite not being part of the breach.