• Welcome to the Internet Infidels Discussion Board.

Pizza Hut hacked

 
 
 
Shit store, shit product, shit service. So it's typical they'd wait so long.

Last chain pizza place I ordered from was Pizza Hut. I ordered a double cheese, double sauce pizza that brought the grand total to almost $30, and what I got was a paper thin excuse for a pizza that I wouldn't feed to my dog. I was so pissed I actually took the thing back to the store, gave the manager some shit, and got my money back. Bastards.
 
Underseer said:
http://www.kentucky.com/news/business/article178930896.html

And what's becoming a story that is all too common, Pizza Hut waited two weeks to notify affected customers. During that time, the credit card information was used by hackers or whoever the hackers sold the information to.
Click to expand...

what are called "disclosure laws" vary from state to state... some have a maximum amount of time that may expire before publically disclosing, some also have a minimum statndard for what information is included. It takes time for an organization to wrap their head around what happened to them. 2 weeks is NO TIME at all.

there are also other regulatory bodies at work in the PCI (payment card industry). The Merchant Bank that issues merchant IDs to their customers (that accept their credit cards) have a plethora of rules on how data and information systems must be protected and how to report a breach, and to whom, and what it must include. these are not laws, but they are regulations that, if violated, can result in fines from the bank, or even the loss of ability to accept credit cards any more.
 
Malintent said:
Underseer said:
http://www.kentucky.com/news/business/article178930896.html

And what's becoming a story that is all too common, Pizza Hut waited two weeks to notify affected customers. During that time, the credit card information was used by hackers or whoever the hackers sold the information to.
Click to expand...

what are called "disclosure laws" vary from state to state... some have a maximum amount of time that may expire before publically disclosing, some also have a minimum statndard for what information is included. It takes time for an organization to wrap their head around what happened to them. 2 weeks is NO TIME at all.

there are also other regulatory bodies at work in the PCI (payment card industry). The Merchant Bank that issues merchant IDs to their customers (that accept their credit cards) have a plethora of rules on how data and information systems must be protected and how to report a breach, and to whom, and what it must include. these are not laws, but they are regulations that, if violated, can result in fines from the bank, or even the loss of ability to accept credit cards any more.
Click to expand...

Whether or not they broke the law is not the problem people have with what they did.

A lot of their customers lost extra money to fraud because they waited so long.

Even though the customers were neither rich not large corporations, hitting customers is a bad thing. Some of them had accounts completely drained before they knew what was going on.
 
This is a completely underwhelming story. I was hoping to read about how one store was tricked into making phallus shaped pizzas because the ordering system was hacked. But no, this is just about credit cards. Boring! I don't care if bad guys get my information. They must have it at least several times thanks to Home Depot, Anthem, Equifax, TJX, etc...
 
Underseer said:
Malintent said:
what are called "disclosure laws" vary from state to state... some have a maximum amount of time that may expire before publically disclosing, some also have a minimum statndard for what information is included. It takes time for an organization to wrap their head around what happened to them. 2 weeks is NO TIME at all.

there are also other regulatory bodies at work in the PCI (payment card industry). The Merchant Bank that issues merchant IDs to their customers (that accept their credit cards) have a plethora of rules on how data and information systems must be protected and how to report a breach, and to whom, and what it must include. these are not laws, but they are regulations that, if violated, can result in fines from the bank, or even the loss of ability to accept credit cards any more.
Click to expand...

Whether or not they broke the law is not the problem people have with what they did.

A lot of their customers lost extra money to fraud because they waited so long.

Even though the customers were neither rich not large corporations, hitting customers is a bad thing. Some of them had accounts completely drained before they knew what was going on.
Click to expand...

Yes, breaches are bad. My only point with the above post is that a 2 week lag between initial discovery and public disclosure, in the world of Information Security, forensic investigations, and Compliance, can be considered an immediate response. To make an analogy... it would be like Trump getting impeached the same week of taking office, due to the evidence collected at that point, instead of not even yet.
 
Jimmy Higgins said:
This is a completely underwhelming story. I was hoping to read about how one store was tricked into making phallus shaped pizzas because the ordering system was hacked. But no, this is just about credit cards. Boring! I don't care if bad guys get my information. They must have it at least several times thanks to Home Depot, Anthem, Equifax, TJX, etc...
Click to expand...

Put your money where your submit button is and post your SSN and birthdate. Daddy needs a new car.

Remember that guy that had the credit lock company that put his own SSN on the side of a truck to advertise his company's services?
He's the CEO of LifeLock, and his identity was stolen 14 times.
https://www.wired.com/2010/05/lifelock-identity-theft/

His company was also sued for 12 million dollars due to his claims of what his business does was demonstrably false (couldn't even protect him). He ultimately needed to resign from the company.
 
Malintent said:
Jimmy Higgins said:
This is a completely underwhelming story. I was hoping to read about how one store was tricked into making phallus shaped pizzas because the ordering system was hacked. But no, this is just about credit cards. Boring! I don't care if bad guys get my information. They must have it at least several times thanks to Home Depot, Anthem, Equifax, TJX, etc...
Click to expand...

Put your money where your submit button is and post your SSN and birthdate. Daddy needs a new car.

Remember that guy that had the credit lock company that put his own SSN on the side of a truck to advertise his company's services?
He's the CEO of LifeLock, and his identity was stolen 14 times.
https://www.wired.com/2010/05/lifelock-identity-theft/

His company was also sued for 12 million dollars due to his claims of what his business does was demonstrably false (couldn't even protect him). He ultimately needed to resign from the company.
Click to expand...
You might want to reread my post for context. I have already been exposed by several companies.

But hey.. Anthem was willing to pay for a year or two of credit protection for my 4 yr old daughter who's info was exposed... meaning her info is at risk for nearly her entire life.

This info will be used for espionage down the road, and still the government has done nothing about it. So fuck it, where is the phallic hacked Pizza Hut pizza?
 
I used to love it, but haven't eaten there in years. Too greasy for me now.
 
You must log in or register to reply here.
Back
Top Bottom