Thieves Targeting Starbucks App to Drain Users’ Bank Accounts
Thieves have begun targeting Starbucks app users to gain access to their bank accounts and leave them out to dry.
People usually link the Starbucks mobile application for its rewards feature, with their bank accounts, credit cards, or PayPal accounts. This basically means that if an uninvited guest has access to the user’s Starbucks mobile app, he can find it easier to load up new gift cards and then sell them illegally.
Starbucks has acknowledged the ongoing scam but has also stated that it’s based on bad passwords set by users themselves. The company also stated that they themselves have not been hacked, and it’s the users who should be more vigilant when it comes to creating strong passwords.
According to consumer journalist Bill Sullivan, “the fraud is a big deal because Starbucks mobile payments are a big deal. Last year, Starbucks said it processed $2 billion in mobile payment transactions, and about 1 in 6 transactions at Starbucks are conducted with the Starbucks app.”
It would be better if Starbucks implemented a two-factor authentication system for its app. In this way, even if a thief gets access to the mobile app’s password, the person will not be able to enter it without a second authorization by the owner.