Someone in Canada is apparently “lovin’ it” by using other people’s money.
Multiple McDonald's customers in Canada have reported fraudulent charges being made through the company’s mobile app. It’s unclear if this is the result of the actions of just one person or multiple people.
“While we are aware that some isolated incidents involving unauthorized purchases have occurred, we are confident in the security of the app. We do take appropriate measures to keep personal information secure. McDonald’s also does not collect or store credit card information as My McD’s app only holds a “token” with the payment provider to allow purchases.
“We recommend our guests always be diligent online by not sharing their passwords with others, creating unique passwords and changing passwords frequently. My McD’s App users receive an email confirmation after any transaction. If guests notice any unauthorized purchases we recommend they contact their bank and change their password immediately.”
Something similiarly occurred locally here in the midwest with a fast food franchaise and a next door neighbor bank. It seems that the teens working at the fast food franchaise were able to compromise the debit accounts at a bank and the bank had to reissue new debit cards for all of it's customers. The message though from the bank to the customers was that they had updated their back end systems and needed to update everyone's ATM cards.