Chipotle Mexican Grill’s email marketing operations were recently breached, resulting in several phishing attacks successfully deployed against Chipotle customers from a trusted domain. The structure of the attack was similar to the recent Nobelium group attack, although no evidence links the perpetrators to Nobelium. Research group Inky reported that Chipotle’s email vendor Mailgun was initially breached, resulting in a full compromise of marketing emails sent to Chipotle customers. 121 phishing emails were sent from the compromised Mailgun account between July 13 and July 16: including two vishing attacks, 14 impersonations of USAA bank to collect financial data, and 105 emails attempting to spoof Microsoft sites in order to steal access credentials. Mailgun has not yet publicly commented.
12 Essentials for a Successful SOC Partnership
Binary Defense
January 12, 2023
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security
