Re: the company caught wind of an attempted hack on its customer rewards program
Perhaps a trial run. One would suppose that DK's reward program is under less scrutiny than, say, banking sites. Run your whole database against DK, identify re-used credentials, then re-use only them against banking sites?