MyDeal Data Breach Exposes 2.2M Customer Details
MyDeal, a subsidiary of Woolworths Group, has announced a data breach that affected approximately 2.2 million customers. The incident, which occurred in 2023, saw unauthorized access to MyDeal's CRM system, exposing some customer data. MyDeal CEO Sean Senvirtne has apologized for the incident and assured customers of increased network monitoring and updates.
The breach exposed customer names, email addresses, phone numbers, delivery addresses, and in some cases, dates of birth. Notably, no payment, driver's license, or passport details were compromised, and no customer account passwords or payment details were affected. MyDeal is contacting affected customers by email and has engaged relevant regulatory authorities and government agencies to investigate the incident. Pieter van der Merwe, Woolworths Group's Chief Security Officer, has confirmed support for MyDeal's response. The breach occurred after MyDeal's acquisition by Woolworths Group on September 23, 2022, with separate platforms for data and CRM systems.
MyDeal has taken steps to inform affected customers and engage with relevant authorities. Customers are advised to review their accounts, change passwords if necessary, and monitor for any suspicious activity. The incident serves as a reminder for all users to maintain vigilance in protecting their personal information.
