Curious, but true: a error in the Dominos Pizza app allowed its clients order free pizza. Paul Price, head of security at, discovered his mistake years ago although now he has decided to share his experience. We might think that he is tired free pizza for lifeBut the reality is quite different.
How could the Domino’s Pizza app be tricked into getting free pizza?
the Domino’s Pizza App API it did not process the data well, so invalid payments could be processed that it could end up accepting. This is how after requesting a pizza with pepperoni, mushrooms and pineapple cake, he discovered a series of things, after a correct approach to the operation of the Domino’s Pizza app.
In a new order, he decided to change the source code of the app a bit and this allowed him to get free pizza. After having tried the VISA card 4111111111111111, he was able to see what the answer was. This was obviously not accepted, but he could intercept the response and change some values.
The order, to his surprise, ended up going to prepared. To confirm, she called the store to see if they had received the order and he verified that yes, they were going to send it to him in 20 minutes. The order placed arrived, so could have had it perfectly free.
However, his conscience failed him and he told the messenger that there had been a mistake with his card and he wanted to pay in cash. He didn’t take advantage of his free pizza!
Problem solved, although it was not the only one for Domino’s Pizza
The company’s chief technology officer, Rod Brooks, has stated that the problem has already been solved since they discovered the problem in one of their frequent reviews last year.
The Domino’s app now has adequate security controls despite the fact that the way payments are processed, at the customer’s side, has not changed. They take security very seriously according to them and he is pleased that this was resolved quickly.
We must say that despite his satisfaction for having solved it on time, It is not the first time that your company has given free food unintentionally! In March 2009 they offered 11,000 free cakes due to a bug on your website. Surely there will be more than one looking forward to the next failure to take advantage of it, although this time the security will surely be greater.
The web applications of food delivery companies such as Domino’s Pizza or among many others, have to be very careful and pay special attention to security, otherwise they could find themselves with large losses of money.
Final considerations
When a company sells online it is exposed to the mischief of many users, and in many cases not even a correct control of the collections is made. Have you ever been able to take advantage of the errors of an online store or have they taken advantage of your ecommerce business? What do you think about it?
Image:
Stay informed of the most relevant news on our news channel
Facebook Comments
Disqus