Maintaining an account on the food ordering platform turned into a nightmare for a woman from Volos e-food on her cell phone!
In accordance with TheNewspaper.gr, the woman woke up in the morning to find that her debit card had been charged in the amount of 1.500 euro (as well as her daily limit) without her having placed any orders.
In particular, an unknown perpetrator with contact information from Germany, had “invaded” the account he maintains on the popular ordering platform, breached it and bought cigarettes, sandwiches and other products, while they also left gratuity to the distributor in the amount of 5 euros, showing how generous they are with foreign money!
The woman contacted her e-food, which appears to not acknowledge its involvement in the case, since the order was placed from the account that was breached on 2/2/2024 at 00.36 at night.
The victim contacted the bank that maintains the linked account and requested a transaction dispute, while canceling her card so as not to be surprised again.
The case raises serious questions about how reliable these types of applications are and how vulnerable they are to hacking, as millions of Greeks have them on their mobile phones.
Do not forget to follow it Xiaomi-miui.gr on Google News to be informed immediately about all our new articles! You can also if you use RSS reader, add our page to your list by simply following this link >> https://news.xiaomi-miui.gr/feed/gn
1 comment
"The case raises serious questions about how reliable these types of applications are and how vulnerable they are to hacking, as millions of Greeks have them on their mobile phones."
Since we are in a technology forum, as for clarification about the reporter's irrelevance.
The platform was not hacked. The hacker stole a user's login information and used it to place an order.
Apparently the hacker is not in Germany, but he used a VPN (I don't think they deliver products from efood in Germany).
The only thing the platform could have done to prevent this kind of theft, is to use two-step verification (eg push or SMS) when using the website or installing the application on another device.
Otherwise, we do not choose a password that is easy to break (dates of birth, 1234, etc.) and we do not use the same login information on more than one website / application.