Multiplan, which manages several shopping centers in Brazil, confirmed on Monday (19) that its application, Multi, suffered a cyber attack on January 10. Some customer data was potentially accessed by the attackers.
In an official note, the company states that among the information potentially accessed is the registration data of the application’s users, including the expiration date with the last four digits of the credit card. However, Multiplan states that not all data collected by the app was seen; more sensitive data, such as full credit card numbers, for example, were not accessed.
On social media, customers claim that they received an SMS message from the company about the leak, with a link where Multiplan recommends that consumers be alert to possible suspicious communications or unrecognized activities related to the application. It also states that if they have questions, customers can contact them via email.
The company said it had reported the incident to the National Data Protection Agency (ANPD) and taken all other appropriate measures. The company owns shopping centers such as MorumbiShopping, Shopping Anália Franco, BarraShopping, ParkShopping, BH Shopping, JundiaíShopping, RibeirãoShopping, PátioSavassi, ParkShopping São Caetano and ParkShoppingCanoas.
In the note, Multiplan also states that it “reinforces its commitment to the best information security practices, transparency and continuous investment in protecting its customers’ data”, apologizes for what happened and guarantees that the application remains safe and operational for use.
