Just Eat cares a lot about our customers’ security – and we hate to see people abuse our brand to deceive you.
We are aware that a small number of Canadian customers have been sent fraudulent emails and text messages claiming to come from Just Eat. These messages may offer recipients the chance to win financial rewards (such as Just Eat vouchers) by completing a short survey.
These examples of spam/phishing messages may attempt to obtain your personal information, or, on completing the survey, it may try to get you to subscribe for a premium service.
What is phishing?
- An unsolicited email, appearing to be from a legitimate company, that uses a phoney reason (such as a security breach or contest) to trick you into providing your personal information.
- The email will often include a reason that urges you to click on a link that takes you to a fake website, which looks authentic by copying the brand name and logo of the real company. They will ask you for personal information such as credit card numbers, account numbers, passwords, date of birth, driver’s license number, and social insurance or social security numbers.
How to recognize it:
This is an example of some of the messaging customers have seen:
The sweet sweet smell of success.
Laden, here’s your order confirmation and details
Put your dinner jacket on… Flames has received your order for collection, nice work. Your meal will be ready at 21:09:56 on Tuesday, 7 November 2017. Your order number is CSW_032.2656_09.
Check order status
So, with your meal signed and sealed, there’s not much left to do but kick back and wait for it to be delivered (unless you’re going to collect it, of course).
This email may look and sound look a Just Eat message, but it is not. Please take care to notice anything that does not match with Just Eat (for example, the order number listed above is not a number; it includes letters and special characters… something Just Eat does not do).
Be careful! If you receive a fraudulent message, or have any concerns about a message, please don’t enter any account or personal details.
If you are concerned that you may have responded to a fraudulent message and your personal details have been compromised, we recommend the following steps:
- If you have entered financial information: contact your bank or card provider immediately.
- If you have entered mobile phone information or have received a premium subscription text: contact your mobile phone provider to cancel any unwanted subscriptions.
- If you have entered your Just Eat password: change it immediately, using a strong, unique password that you don’t use for any other site.
- If you use the same password on multiple sites: change any passwords that may have been compromised, preferably using a strong, unique password for every site.
Help us help you
To help us investigate & take action, please send us examples of any fraudulent messages to firstname.lastname@example.org.
- For email, please forward it to us then delete the original
- For SMS, please take a screenshot & send it to us, then delete the original. Please include the original sending number if possible.
If you have any other questions please contact us at email@example.com, providing as much information as possible about the message.
If you are concerned that you may have responded to this email and your personal details have been compromised, you should contact your bank and mobile phone provider immediately to block or cancel any unwanted subscriptions. If you use the same password on multiple sites, change any passwords that may have been compromised, preferably using a strong, unique password for every site.
Unfortunately, email and text message scams remain all too common in this day and age. We urge all our customers to remain vigilant of their security across all their devices, to use a unique password for every service, and make sure their passwords are long and robust.
If you have any questions – or if you are a Just Eat customer and have received this email – please contact us at firstname.lastname@example.org, and attach a screenshot of the message.