Security consultant Paul Price discovered the bug while playing around with Dominos Android app. The app randomly generates a 10 voucher code on certain orders, but the code is generated server side via an API call. Domino’s has confirmed that it has fixed the bug relatively quickly. Back in 2009, the pizza chain offered up 11,000 pizzas to customers at no cost due to a website glitch. In 2014, the chain refused to pay a ransom fee of US $40,000 after attackers made off with nearly 650,000 customers records.”]
Source: https://grahamcluley.com/dominos-fixes-bug-android-app-allowed-hackers-order-free-pizza/

