Woolworths Australia has tightened its security following a series of scams targeting customers through reward points. So far 130 customers have been victim to the fraud. Reward accounts have been accessed using login and password credentials suggesting third-party website involvement.
“Woolworths has investigated and found no evidence to suggest its system has been breached or compromised. Fraudsters have obtained login credentials from online scams or other sources,” said a spokesperson for the company.
As a precautionary step, Woolworths have locked down accounts appearing to have suspicious point redemption and has stated it will reimburse customers missing points. Further, the company is working to improve password security and notifications sent to customers if changes in their details have been picked up.