So what’s it worth to you? That is essentially what hackers are telling Domino’s Pizza in Belgium and France. The hackers behind this latest example of cyber extortion is a group calling itself Rex Mundi. They gave Domino’s until last night at 8:00PM CEST to comply with their demands for $30,000 Euros (~ $41,000 USD) or they would publish customer’s names, addresses, and phone numbers on the web. They claim to have a database of 650,000 customers in their possession broken down as 58,000 Belgians and 592,000 Frenchmen.
As per Rex Mundi, they have names, e-mail addresses, physical addresses, phone numbers, and delivery instructions are in their possession. The big question is whether they have credit card information which could set up a greater possibility for identity theft. The short answer is no. However, it’s not because of a greater level of security on behalf of the Pizza chain. Rather, their computer system is arcane as in old technology. Domino’s of Belgium and France simply does not have the ability to accept credit card payments. So their stinginess to invest in one of the most basic retail features of the 1990s has paid off for them. It may be the same reason as to how Rex Mundi was able to hack into their IT infrastructure and is quite likely the same reason the security breech was contained to these two nations.
Despite their serious shortcomings in regards to IT security, Domino’s has held a tougher line against Rex Mundi than President Obama has against the terrorists because at least they refuse to negotiate. It seems like the ball is back in Rex Mundi’s court. It is highly unlikely they expected to chain to embarrass itself more than it already has been by the breech. So the question now becomes what is Rex Mundi’s next move?