In September 2020, 80% of MyDeal were acquired by Woolworths, nevertheless Woolworths was not impacted by the security breach.
“A compromised user credential was used to gain unauthorised access to its Customer Relationship Management system resulting in unauthorised access to some customer data within our network”, according to the data breach notification published by the company.
The hackers gained access to the MyDeal Customer Relationship Management (CRM) system by exploiting a user’s compromised credentials. That is the system they use to take customer support calls.
As soon as the company was aware of the breach they blocked the access to all affected systems. The company notified all relevant authorities and ensure to assist with their inquiries into the matter.