Cheeky buggers.<p>I'm also aware of an attack/exploit on carpark ticketing systems that people are using to get cheap parking.<p>I wouldn't call it sophisticated but it does require an understanding of the system above your average punter.<p>But what is most interesting, is these kinds of exploits seem to be getting found by non-technical people, and while I see all the ways it is easy to trace the exploit back to them, they don't and so to them it's more akin to a videogame exploit. Ie: they can't envision real world consequences from messing with a computer system.<p>In their defense, they have been getting away with it for two years now.
The ui of the website is such a steaming pile of doo doo (and the app is no better), they sort of ask to be exploited because it's so painful to use.<p>I just tried to order delivery, because I never had and skipped dinner tonight, started at 9:45. By the time I managed to get an order together, with assorted difficulties, and was actually forced to accept receiving their "opt in" promo offers to be able to complete registration, it was after 10pm and deliveries were closed for the night.<p>I'm definitely trying to exploit them tomorrow after that experience.