Credential Stuffing at Chipotle Mexican Grill Inc.

Subscriber Content
Screenshot of the first page of Credential Stuffing at Chipotle Mexican Grill Inc.
Derryck Coleman, Audit Analytics

It was recently reported that customers of Chipotle Mexican Grill Inc. were targeted by a cyber attack in which orders were placed through a victim’s Chipotle app account. A spokesperson for Chipotle said the company found no security issues and believed the breach may have been due to credential stuffing. Credential stuffing attacks are difficult for companies because the breach isn’t of the company’s systems, yet their customers are still harmed.

In this article, Audit Analytics discusses credential stuffing and offers suggestions on what companies can do to avoid and mitigate similar cyber attacks.

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.