What happened in the EatStreet data breach?
Twingate Team
•
May 23, 2024
In May 2019, EatStreet, an online food ordering service, experienced a data breach that compromised a significant amount of customer and partner information. The breach was detected on May 17, 2019, and the unauthorized access was terminated. The hacker responsible for the breach, Gnosticplayers, has a history of targeting other online services as well. This incident highlights the importance of robust security measures to protect sensitive data in the digital age.
How many accounts were compromised?
The breach impacted data related to approximately 6.35 million users.
What data was leaked?
The data exposed in the breach encompassed dates of birth, email addresses, genders, names, partial credit card data, passwords, phone numbers, physical addresses, and social media profiles.
How was EatStreet hacked?
In the EatStreet data breach, the hacker Gnosticplayers gained unauthorized access to the company's database, stealing customer and partner details. The attacker managed to download sensitive information, including names, phone numbers, email addresses, bank accounts, and routing numbers for restaurants and delivery services. For customers who used the EatStreet app and website, their personal data, such as credit card numbers, expiration dates, card verification codes, billing addresses, and phone numbers, might have been compromised.
EatStreet's solution
In response to the data breach, EatStreet took several measures to enhance the security of their platform and prevent future hacking incidents. These actions included reinforcing multi-factor authentication, rotating credential keys, and reviewing and updating coding practices. Additionally, EatStreet notified affected customers, delivery services, and restaurant partners about the security incident and the steps the company had taken to address it.
How do I know if I was affected?
EatStreet notified customers, delivery services, and restaurant partners believed to be affected by the breach. If you used EatStreet and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the respective platforms.
For more specific help and instructions related to EatStreet's data breach, please contact EatStreet Support directly.
Where can I go to learn more?
If you want to find more information on the EatStreet data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the EatStreet data breach?
Twingate Team
•
May 23, 2024
In May 2019, EatStreet, an online food ordering service, experienced a data breach that compromised a significant amount of customer and partner information. The breach was detected on May 17, 2019, and the unauthorized access was terminated. The hacker responsible for the breach, Gnosticplayers, has a history of targeting other online services as well. This incident highlights the importance of robust security measures to protect sensitive data in the digital age.
How many accounts were compromised?
The breach impacted data related to approximately 6.35 million users.
What data was leaked?
The data exposed in the breach encompassed dates of birth, email addresses, genders, names, partial credit card data, passwords, phone numbers, physical addresses, and social media profiles.
How was EatStreet hacked?
In the EatStreet data breach, the hacker Gnosticplayers gained unauthorized access to the company's database, stealing customer and partner details. The attacker managed to download sensitive information, including names, phone numbers, email addresses, bank accounts, and routing numbers for restaurants and delivery services. For customers who used the EatStreet app and website, their personal data, such as credit card numbers, expiration dates, card verification codes, billing addresses, and phone numbers, might have been compromised.
EatStreet's solution
In response to the data breach, EatStreet took several measures to enhance the security of their platform and prevent future hacking incidents. These actions included reinforcing multi-factor authentication, rotating credential keys, and reviewing and updating coding practices. Additionally, EatStreet notified affected customers, delivery services, and restaurant partners about the security incident and the steps the company had taken to address it.
How do I know if I was affected?
EatStreet notified customers, delivery services, and restaurant partners believed to be affected by the breach. If you used EatStreet and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the respective platforms.
For more specific help and instructions related to EatStreet's data breach, please contact EatStreet Support directly.
Where can I go to learn more?
If you want to find more information on the EatStreet data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the EatStreet data breach?
Twingate Team
•
May 23, 2024
In May 2019, EatStreet, an online food ordering service, experienced a data breach that compromised a significant amount of customer and partner information. The breach was detected on May 17, 2019, and the unauthorized access was terminated. The hacker responsible for the breach, Gnosticplayers, has a history of targeting other online services as well. This incident highlights the importance of robust security measures to protect sensitive data in the digital age.
How many accounts were compromised?
The breach impacted data related to approximately 6.35 million users.
What data was leaked?
The data exposed in the breach encompassed dates of birth, email addresses, genders, names, partial credit card data, passwords, phone numbers, physical addresses, and social media profiles.
How was EatStreet hacked?
In the EatStreet data breach, the hacker Gnosticplayers gained unauthorized access to the company's database, stealing customer and partner details. The attacker managed to download sensitive information, including names, phone numbers, email addresses, bank accounts, and routing numbers for restaurants and delivery services. For customers who used the EatStreet app and website, their personal data, such as credit card numbers, expiration dates, card verification codes, billing addresses, and phone numbers, might have been compromised.
EatStreet's solution
In response to the data breach, EatStreet took several measures to enhance the security of their platform and prevent future hacking incidents. These actions included reinforcing multi-factor authentication, rotating credential keys, and reviewing and updating coding practices. Additionally, EatStreet notified affected customers, delivery services, and restaurant partners about the security incident and the steps the company had taken to address it.
How do I know if I was affected?
EatStreet notified customers, delivery services, and restaurant partners believed to be affected by the breach. If you used EatStreet and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity, and report any unauthorized transactions or changes to the respective platforms.
For more specific help and instructions related to EatStreet's data breach, please contact EatStreet Support directly.
Where can I go to learn more?
If you want to find more information on the EatStreet data breach, check out the following news articles:
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions