How much is a cup of coffee really worth? Several weeks ago, many Starbucks customers began reporting their Starbucks card balance emptied and then topped again. On May 13th, Starbucks released a written statement denying the un-authorized activity was a result of a hack or an intrusion to its servers or mobile app. But the hard facts show that indeed customers had their accounts abused by hackers.
The question is, how were the credentials obtained? There are several plausible answers to this question and no answer can be proved or shot down completely. Some researchers say that there was an active phishing campaign targeting Starbucks customers, others say that the phishing campaign was targeting a wider range of users who are not necessarily Starbucks customers.
Continue reading at App Developer Magazine.
