Tesco

May 11, 2023 — 1 min read

Tesco experienced a security issue.

A database of stolen usernames and passwords from other platforms had been tried out on its websites.

It issued new cards to 600,000 Clubcard account holders.

Source: https://www.bbc.com/news/technology-51710687

TPRM report: https://scoringcyber.rankiteo.com/company/-tesco

"id": "tes2327221222",
"linkid": "-tesco",
"type": "Breach",
"date": "03/2020",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 600000,
                        'industry': 'Supermarket',
                        'location': 'United Kingdom',
                        'name': 'Tesco',
                        'type': 'Retail'}],
 'attack_vector': 'Stolen Credentials',
 'description': 'A database of stolen usernames and passwords from other '
                'platforms had been tried out on its websites. Tesco issued '
                'new cards to 600,000 Clubcard account holders.',
 'motivation': 'Unauthorized Access',
 'response': {'remediation_measures': ['Issued new cards to 600,000 Clubcard '
                                       'account holders']},
 'title': 'Tesco Security Issue',
 'type': 'Credential Stuffing',
 'vulnerability_exploited': 'Reuse of Usernames and Passwords'}

Published by

Jeremy C

Tesco

Intelligence and Security Committee (ISC)

Meta

Gladney Centre for Adoption