Foodora Data Breach Impacts Customers in 14 Countries
Leo Daniels • June 19, 2020
This is a subtitle for your new post
Online food delivery service Delivery Hero
has confirmed a data breach affecting its Foodora
brand.
The cybersecurity incident has exposed the account details of hundreds of thousands of customers in 14 different countries.
Delivery Hero told Infosecurity Magazine that the exposed data consists of “unique email addresses as well as certain customer details: encrypted password hashes, name, first name, delivery address, and phone number.”
The company confirmed that no financial data, clear-text passwords or geolocation data was exposed.
Data breached in the incident was found online on May 19, posted in a forum where stolen data is wont to show up, according to the Gov Infosecurity
website. Whoever posted the data on the forum claims that Foodora was compromised in 2019.
A spokesperson for Delivery Hero said: “Unfortunately, we can confirm that a data breach has been identified concerning personal data dating back to 2016,” said a Delivery Hero spokesperson.
“The data originates from some countries across our current and previous markets.”
The compromised data appears to belong to Foodora users in Australia, Austria, Canada, France, Germany, Hong Kong, Italy, the Netherlands, Norway, Singapore, Spain, and the United Arab Emirates.
Data breach expert and Have I Been Pwned
website creator Troy Hunt said that over 600,000 unique email addresses were among the leaked data. According to Hunt’s research, the oldest Australian files exposed in the incident date back to August 2015.
“Our security teams validated that the exposed database contained approximately 480,000 email addresses,” a Delivery Hero spokesperson told Infosecurity Magazine.
“Some explanation for the real number being lower, is due to duplicates, email addresses used for staging and testing accounts, invalid emails addresses (as we did not use any verification of email addresses back then), email addresses of domains owned by DH.”
Delivery Hero was founded in 2011 by Niklas Östberg. The business is based in Berlin, Germany, and operates in over 40 countries internationally in Asia, Europe, Latin America, and the Middle East.
The company, which has around 22,000 employees, partners with more than 500,000 restaurants globally to deliver over 3 million food orders per day.
Delivery Hero is not yet sure how the breach occurred but is taking steps to find out.
A spokesperson said the company has “started a thorough internal investigation” and is “working closely with our security and data protection teams, as well as local authorities, to identify what caused the breach and inform the affected parties.”
The spokesperson added that the “relevant authorities” have been informed of the data breach.
We’re 1-fix, we can help you secure your business
At 1-fix, we take a realistic approach to technology – ensuring our client’s systems are best protected.
If you have any concerns, questions or simply want to explore how to better secure your business, please do get in touch with the team for a FREE demonstration, consultation to explore how exposed your business might be and identify actions to take.
Join Our Mailing List
All sign-ups are handled inline with our privacy policy and can unsubscribe at any time.
Recent Blogs
Avoid the risks of using Office 365 Home at work. Learn why Office 365 for business is the right choice for security, scalability, and compliance.
Discover the key benefits of outsourced IT support, from enhanced cybersecurity and 24/7 monitoring to cost savings and regulatory compliance.
Stay cyber secure while travelling with 10 expert tips. Use VPNs, avoid public Wi-Fi, and protect your data on the go.
In a world where AI is changing how we work and compete, security is more important than ever. We are gathering industry leaders and AI experts for a special roundtable event. This event will focus on a key topic: AI security.
Microsoft 365 Business Basic offers a range of cloud-based services designed to empower businesses to work smarter and more efficiently. Let's delve into what this package includes and how it can benefit your organisation.
We’re excited to announce an informative webinar featuring Elliot Wilkie from Brigantia and Craig Atkins from 1-Fix, diving deep into the world of DMARC on 8th July at 2 PM . This is an essential session for anyone looking to secure their email communications, understand DMARC compliance, and enhance their email deliverability.
