New World Customers Warned After Cyber Attack

New World Clubcard members are being asked to change their online passwords after a cyber attack, known as "password spraying," where commonly used or previously compromised passwords are tested across many accounts. Foodstuffs' systems have not been breached, but some customers' passwords have been successfully guessed by scammers using automated tools.

New World Clubcard members have been advised to change their online passwords following a recent cyber attack. The attack, identified as a "password spraying" attempt, involved scammers using previously compromised or commonly used passwords to gain unauthorized access to a limited number of Clubcard accounts. According to a statement from New World owner Foodstuffs, the company's systems have not been breached, but some customers' passwords have been successfully guessed by scammers using automated tools [2].

Foodstuffs' spokesperson emphasized that the issue is consistent with a "password spraying" attack, where scammers test a large number of accounts with commonly used or previously compromised passwords. The company has urged customers to change their passwords as a precautionary measure.

This incident comes amidst a broader trend of cybersecurity threats targeting consumers and businesses alike. In a separate incident, Qantas recently confirmed contact from a potential cybercriminal following a major data breach that compromised the personal records of millions of customers [3]. The airline has engaged with the Australian Federal Police and cybersecurity experts to investigate the breach, which included customer names, email addresses, phone numbers, and birth dates. However, Qantas has assured customers that credit card details, financial information, or passport details were not included in the breach.

These incidents highlight the importance of robust cybersecurity practices, including the use of strong, unique passwords and regular password changes. A recent analysis of commonly used passwords in Wisconsin revealed that many people still use weak passwords, making their accounts vulnerable to hacking attempts [4]. Experts recommend using strong, unique passwords and changing them regularly to protect against such threats.

In response to these incidents, New World Clubcard members are encouraged to take immediate action to secure their accounts. By changing their passwords and adopting strong cybersecurity practices, customers can help protect their personal information and prevent potential identity theft or financial loss.

References:

[1] Reddit Post. (2025). Has anyone got this email from New World today? Retrieved from [https://www.reddit.com/r/newzealand/comments/1lx0mn5/has_anyone_got_this_email_from_new_world_today/](https://www.reddit.com/r/newzealand/comments/1lx0mn5/has_anyone_got_this_email_from_new_world_today/)

[2] NZ Herald. (2025). New World customers warned after password spraying attack. Retrieved from [https://www.nzherald.co.nz/business/new-world-customers-warned-after-password-spraying-attack/X2ZCOMSOMVCNZCJC3CZY6PK5FQ/](https://www.nzherald.co.nz/business/new-world-customers-warned-after-password-spraying-attack/X2ZCOMSOMVCNZCJC3CZY6PK5FQ/)

[3] Newsbytes App. (2025). Qantas confirms contact from potential hacker after massive data breach. Retrieved from [https://www.newsbytesapp.com/news/science/qantas-confirms-contact-from-potential-hacker-after-massive-data-breach/story](https://www.newsbytesapp.com/news/science/qantas-confirms-contact-from-potential-hacker-after-massive-data-breach/story)

[4] KDHL Radio. (2025). Most hacked passwords in Wisconsin. Retrieved from [https://kdhlradio.com/ixp/150/p/most-hacked-passwords-in-wisconsin/](https://kdhlradio.com/ixp/150/p/most-hacked-passwords-in-wisconsin/)