Australian Information Security Incident Reported: September 13 2018
Woolworths has tightened security around its loyalty program after 130 accounts were fraudulently accessed.
Over the past few months, fraudsters have fraudulently redeemed points from the Rewards member accounts. However, an investigation by Woolworths found no evidence to suggest its data systems had been breached or compromised.
Woolworths claims in all the 130 cases, Rewards accounts were accessed with valid login and password details suggesting credentials had been obtained from other sources or online scams.