Grubhub Confirms Data Breach Amid Hacker Extortion Demands
CHICAGO, Ill. — Grubhub, the popular food delivery platform, confirmed on Tuesday that it experienced a data breach after unauthorized actors accessed parts of its internal systems. The company disclosed the incident following reports that the hacking group ShinyHunters is demanding a Bitcoin ransom in exchange for not releasing stolen customer support data.
In a statement to cybersecurity news outlet BleepingComputer, Grubhub acknowledged that it detected and promptly stopped the unauthorized activity. “We’re aware of unauthorized individuals who recently downloaded data from certain Grubhub systems,” the company said. “We quickly investigated, stopped the activity, and are taking steps to further increase our security posture.”
Grubhub emphasized that sensitive information such as financial details and order history were not compromised. However, the company declined to provide further details on the timing of the breach, the scope of affected data, or whether extortion demands are ongoing. The incident has raised concerns among cybersecurity experts, especially given Grubhub’s recent security challenges.
Just last month, Grubhub was linked to scam emails sent from its own b.grubhub.com subdomain promoting a cryptocurrency scheme promising large returns on Bitcoin payments. The company said it contained that incident and blocked further unauthorized emails but did not clarify if the two events are connected.
Sources familiar with the investigation told BleepingComputer that the ShinyHunters hacking group is behind the breach and is demanding payment in Bitcoin to prevent the public release of stolen customer support data. ShinyHunters has a history of targeting major companies and leaking sensitive information when ransoms are not paid.
Grubhub has engaged a third-party cybersecurity firm to assist in the investigation and has notified law enforcement agencies, including the Federal Bureau of Investigation. The company is also working to enhance its security measures to prevent future incidents.
Experts note that ransomware and extortion attacks continue to pose significant threats to businesses handling large volumes of consumer data. The Cybersecurity and Infrastructure Security Agency has issued repeated warnings about the increasing sophistication of such attacks and urges companies to adopt robust security protocols.
Consumers are advised to remain vigilant for suspicious emails or communications claiming to be from Grubhub and to monitor their accounts for any unusual activity. The Federal Trade Commission provides resources on how to protect personal information and respond to potential identity theft.
As investigations continue, Grubhub has pledged transparency and cooperation with authorities to safeguard its customers and restore trust. The breach serves as a stark reminder of the ongoing cybersecurity challenges facing digital service providers in an increasingly interconnected world.
Leave a Reply