/

What happened in the Foodora data breach?

What happened in the Foodora data breach?

Twingate Team

May 9, 2024

In April 2016, Foodora, an online food delivery service, experienced a data breach that later became widely circulated on the internet. The incident involved unauthorized access to customer information from multiple countries, including names, delivery addresses, phone numbers, and passwords stored as either salted MD5 or bcrypt hashes. The breach affected Foodora users in 14 countries, and the company has since been working with security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties.

How many accounts were compromised?

The breach impacted data related to approximately 583,000 individuals.

What data was leaked?

The data exposed in the breach included email addresses, names, passwords stored as salted MD5 or bcrypt hashes, phone numbers, and physical delivery addresses.

How was Foodora hacked?

The Foodora data breach occurred when an individual posted the stolen data on a forum known for sharing such information, claiming that Foodora was compromised in 2019. The specific methods used by the hackers and any identified vulnerabilities remain undisclosed. Delivery Hero, Foodora's parent company, confirmed the breach and initiated an internal investigation, working with security and data protection teams, as well as local authorities, to identify the cause and inform affected parties.

Foodora's solution

In response to the data breach, Foodora's parent company, Delivery Hero, initiated a thorough internal investigation and informed all relevant authorities. They collaborated with their security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties. Although specific details on enhanced security measures and steps taken to protect customer information were not disclosed, the company's actions demonstrate their commitment to addressing the hack and preventing future incidents.

How do I know if I was affected?

Foodora has not publicly disclosed whether they reached out to affected users. If you're a Foodora customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Foodora's data breach, reach out to their customer service through their Contact page.

Where can I go to learn more?

If you want to find more information on the Foodora data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

What happened in the Foodora data breach?

What happened in the Foodora data breach?

Twingate Team

May 9, 2024

In April 2016, Foodora, an online food delivery service, experienced a data breach that later became widely circulated on the internet. The incident involved unauthorized access to customer information from multiple countries, including names, delivery addresses, phone numbers, and passwords stored as either salted MD5 or bcrypt hashes. The breach affected Foodora users in 14 countries, and the company has since been working with security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties.

How many accounts were compromised?

The breach impacted data related to approximately 583,000 individuals.

What data was leaked?

The data exposed in the breach included email addresses, names, passwords stored as salted MD5 or bcrypt hashes, phone numbers, and physical delivery addresses.

How was Foodora hacked?

The Foodora data breach occurred when an individual posted the stolen data on a forum known for sharing such information, claiming that Foodora was compromised in 2019. The specific methods used by the hackers and any identified vulnerabilities remain undisclosed. Delivery Hero, Foodora's parent company, confirmed the breach and initiated an internal investigation, working with security and data protection teams, as well as local authorities, to identify the cause and inform affected parties.

Foodora's solution

In response to the data breach, Foodora's parent company, Delivery Hero, initiated a thorough internal investigation and informed all relevant authorities. They collaborated with their security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties. Although specific details on enhanced security measures and steps taken to protect customer information were not disclosed, the company's actions demonstrate their commitment to addressing the hack and preventing future incidents.

How do I know if I was affected?

Foodora has not publicly disclosed whether they reached out to affected users. If you're a Foodora customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Foodora's data breach, reach out to their customer service through their Contact page.

Where can I go to learn more?

If you want to find more information on the Foodora data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

What happened in the Foodora data breach?

Twingate Team

May 9, 2024

In April 2016, Foodora, an online food delivery service, experienced a data breach that later became widely circulated on the internet. The incident involved unauthorized access to customer information from multiple countries, including names, delivery addresses, phone numbers, and passwords stored as either salted MD5 or bcrypt hashes. The breach affected Foodora users in 14 countries, and the company has since been working with security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties.

How many accounts were compromised?

The breach impacted data related to approximately 583,000 individuals.

What data was leaked?

The data exposed in the breach included email addresses, names, passwords stored as salted MD5 or bcrypt hashes, phone numbers, and physical delivery addresses.

How was Foodora hacked?

The Foodora data breach occurred when an individual posted the stolen data on a forum known for sharing such information, claiming that Foodora was compromised in 2019. The specific methods used by the hackers and any identified vulnerabilities remain undisclosed. Delivery Hero, Foodora's parent company, confirmed the breach and initiated an internal investigation, working with security and data protection teams, as well as local authorities, to identify the cause and inform affected parties.

Foodora's solution

In response to the data breach, Foodora's parent company, Delivery Hero, initiated a thorough internal investigation and informed all relevant authorities. They collaborated with their security and data protection teams, as well as local authorities, to identify the cause of the breach and inform the affected parties. Although specific details on enhanced security measures and steps taken to protect customer information were not disclosed, the company's actions demonstrate their commitment to addressing the hack and preventing future incidents.

How do I know if I was affected?

Foodora has not publicly disclosed whether they reached out to affected users. If you're a Foodora customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Foodora's data breach, reach out to their customer service through their Contact page.

Where can I go to learn more?

If you want to find more information on the Foodora data breach, check out the following news articles: