Grubhub is currently investigating a new data breach and an associated extortion attempt following a security compromise linked to its Zendesk platform. This latest incident, attributed to the hacking group ShinyHunters, allegedly stems from credentials stolen during a previous attack on Salesforce applications.
The food delivery service Grubhub is grappling with a fresh security crisis after reports surfaced that hackers have accessed sensitive internal data and are demanding a ransom. This breach is reportedly connected to the group known as ShinyHunters, who have targeted the company’s Zendesk systems used for customer support and chat services. The group is allegedly leveraging credentials obtained from a broader security failure involving Salesforce tools to gain unauthorized entry into Grubhub’s infrastructure.
While the full scale of the breach and the specific number of impacted users remain undisclosed, Grubhub has confirmed that it is actively investigating the situation. The company has enlisted the help of a third-party cybersecurity firm to analyze the extent of the intrusion and bolster its existing defenses. Additionally, Grubhub officials stated that they have already reported the matter to law enforcement agencies to assist in the criminal investigation.
In an official statement regarding the matter, a spokesperson for Grubhub acknowledged that unauthorized individuals managed to download data from specific systems. However, the company emphasized that its initial findings suggest that highly sensitive information, such as financial records or customer order histories, was not compromised during the event. The company maintains that it took swift action to stop the unauthorized activity once it was detected.
The situation is complicated by an extortion demand, with the hackers reportedly requesting payment in Bitcoin to prevent the stolen data from being published on dark web forums. This ultimatum reportedly covers data from both this recent incident and a previous breach that occurred earlier in the year. The group behind the threat has a well-documented history of high-profile cyberattacks and large-scale data leaks targeting various global corporations.
Throughout the past year, ShinyHunters has remained a significant threat in the cybersecurity landscape, frequently appearing in headlines for targeting dozens of companies. Their activities have prompted warnings from major tech firms and government agencies alike. As Grubhub works to resolve this latest threat, the incident serves as a reminder of the persistent vulnerabilities faced by large digital platforms that rely on interconnected third-party service providers.
Source: Grubhub Confirms New Data Breach as Hackers Reportedly Demand Ransom