Food delivery giant GrubHub have confirmed they suffered a ‘security incident’ that has resulted in the data customers, drivers and merchants personal data being compromised.
In a statement released by GrubHub they confirmed that the data leak incident involved a third party contractor gaining unauthorized access to users contact information.
After discovering the issue, GrubHub immediately launched an investigation After identifying the associated account they terminated the account holders access and removed the service provider from their systems.
Grub Hub responded quickly by partnering with a third-party cybersecurity firm for a comprehensive investigation.
They have also rotated their internal passwords and deployed additional anomaly detection mechanisms.
The compromised data included...
