While retailers and restaurants in the U.S. deal with a flood of card data breaches, hackers have demanded a ransom of 30,000 euros ($40,706) from Domino's Pizza (NYSE:DPZ). In a startling move, the hackers demanded the money after stealing personal data on more than 600,000 of the restaurant chain's customers in Belgium and France.
The hacker group, Rex Mundi, threatened that Domino's Pizza had until Monday at 8 p.m. to pay up, or the group would post all of the data — including customers' physical addresses — on the Internet. Domino's has not released on update on the breach, but a spokesperson said earlier this week that the company would not be paying the ransom and that financial data had not been stolen.
"Domino's Pizza uses an encryption system for data. However, we suffered a hack by seasoned professionals and it is likely that they could decode the encryption system, including passwords," according to the Domino's Twitter account in France. "This is why we recommend that you change your password for security reasons. We strongly regret this situation and take illegal access very seriously."
Domino's VP of Communications Tim McIntyre told NBCNews.com that the hacking was "isolated" to independent franchise markets in Belgium and France. "This does not affect any market outside of France and Belgium. The site has been secured," he said.
The data was stolen from Domino's Pizza's online ordering system, which does not collect credit card orders, so no financial data was taken, McIntyre confirmed.
Will PF Chang's data breach speed EMV?
Shoppers stop buying online after breaches
Target gets serious about its digital transformation
EBay hit in cyberattack, 112 million user accounts compromised
EMV migration won't save retail