Great Motorola Edge deal on Amazon!

Weak passwords allowing hackers to steal money from Starbucks app users

By Ben R.
11comments
iOS Android Apps
Weak passwords allowing hackers to steal money from Starbucks app users
Users of the official Starbucks mobile app are being targeted by hackers, with connected PayPal, debit card and bank accounts being relieved of, in some cases, hundreds of dollars. Once an account has been infiltrated, the criminals create a gift card, load it up at the holder's expense, and transfer the funds to themselves as if they were sending a gift. To add insult to injury, those afflicted are also met with a deluge of automated emails, with messages running along the lines of "Your eGift Just Made Someone's Day."

Starbucks has acknowledged that a number of its customers have been scammed in this manner, although vehemently denies any wrongdoing. The world's largest coffeehouse insists that there has been no security breach from its end, and instead, believes that customers with weaker passwords have left themselves susceptible to intrusion. 

According to consumer advocate and cyber-crime commentator Bob Sullivan, who first broke this story, Starbucks' 'auto-reload' feature is at least partially culpable in many cases, permitting thieves to steal hundreds of dollars from linked credit cards "in a matter of minutes." 

As you may have gleaned, auto-reload is an optional function that automatically tops up an account once the balance hits zero, which is good if you're a regular Starbucks-goer and don't want the hassle of incessantly adding credit. But the catch here, is that once hacked, the auto-reload threshold can be increased, meaning a criminal can repeat the process but inject larger sums into the account from the linked payment method.

Recommended Stories
The simplicity of auto-reload means that hacked accounts can be stripped of a lot of money in a very short period, and as such, Sullivan recommends that all Starbucks customers immediately disable the feature. 

As well as halting auto-reload, an alphanumeric password with plenty of symbols and capital letters is always advised no matter what one may be signing up to. Moreover, using the same pass-phrase on more than one occasion should also be avoided, since it means that if the code is cracked, only that account is at risk of being compromised.  

So, if you are as partial to convenient passwords as you are a double espresso, ensure that your Starbucks password is secure and impossible for anybody else to guess. This concerted effort appears to have targeted Starbucks customers, but it could happen to any app or service dealing with your money, so go ahead and check out our round-up of 5 free password managers for iOS and Android to help you stay protected.

Recommended Stories

Loading Comments...

Popular stories

Even longtime T-Mobile customers will have to put up with slow internet speed policy
Even longtime T-Mobile customers will have to put up with slow internet speed policy
Two more companies want FCC action against T-Mobile for interference from 5G
Two more companies want FCC action against T-Mobile for interference from 5G
The 51 million customers affected by the AT&T data breach are getting free protection for 12 months
The 51 million customers affected by the AT&T data breach are getting free protection for 12 months
Make your Galaxy fingerprint scanner unlock faster as Samsung fixes what One UI 6.1 broke
Make your Galaxy fingerprint scanner unlock faster as Samsung fixes what One UI 6.1 broke
iPhone users warned to disable iMessage temporarily to avoid getting hacked
iPhone users warned to disable iMessage temporarily to avoid getting hacked
T-Mobile will soon have another reason to gloat
T-Mobile will soon have another reason to gloat

Latest News

Verizon's Visible introduces annual plans with discounts up to 26%
Verizon's Visible introduces annual plans with discounts up to 26%
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Apple tipped to reduce display size of iPhone 17 Plus
Apple tipped to reduce display size of iPhone 17 Plus
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
FCC OKs Cingular\'s purchase of AT&T Wireless