Summary: Grubhub has confirmed a data breach resulting from unauthorized access to information stored by a third-party service provider, leading to the theft of personal data and partial payment card information of customers. The stolen data includes names, emails, phone numbers, and hashed passwords for legacy systems, prompting the company to take immediate corrective actions. Although Grubhub claims the incident has been fully contained, details regarding the number of affected individuals and the timeline of the breach remain unclear.
Affected: Grubhub (food delivery service)
Keypoints :
- Data breach involved a third-party contractor providing support services.
- Stolen information includes names, email addresses, phone numbers, card types, and the last four digits of card numbers.
- Grubhub has taken measures to secure its systems and claims the incident has been fully contained.
- The company has faced prior regulatory challenges, including a million settlement with the Federal Trade Commission.
- Other food delivery platforms have also experienced similar cyberattacks.
Source: https://therecord.media/grubhub-says-third-party-hack-exposed-campus-customers