After a major hack, the information of millions of users and thousands of Glovo riders is up for sale.
Globe is one of the best apps to order food from home, reason why many users from Spain and other countries use it every day when they are hungry or need anything from the supermarket. The so-called riders With their big yellow backpack, they go to the restaurant or store and pick up the order, taking it later to the appointed meeting point.
It is a very comfortable and increasingly standardized service. However, it seems that not everything is going well in the company: the data of more than 37,000 riders and more than 5 million customers are for sale through the deep web after a new cyber attack on Glovo.
Telephones, account numbers and addresses of clients and riders of Glovo are for sale after the hacking of the company
According to EL PERIÓDICO, after the cyberattack an important database has been put up for sale of the company, which reveals confidential customer information and riders who work at Glovo. The sale in question has been published in a forum specialized in cyberattacks of the deep weband offers can be sent to an encrypted address. The highest bid will be the one that can keep the information.
On the one hand, the information sold includes data from a total of 37,509 riders who work as freelancers for Glovo. Among the information leaked from them, there are sensitive data such as the full name, your ID, the email, the associated telephone numbers, your personal address, the account number or IBAN and some more information such as the type of contract or the means of transport used.
As for Glovo’s regular customers, the information shared has not reached that much. Most worrying are the data from a total of 5,790,563 orders placed through the platform. For each order, only the name, partial details, the order code and its status final. There is no personal data as binding as it happens with the riders.
In addition, the database also includes a total of 3,854 incident records related to McDonald’s orders. The chain has been using Glovo as its main partner for years, and among the leaked data are claims and complaints from users, with data such as affected products, name or solution offered by the company.
This dataset includes 5,790,563 costumers, 21,379 employees, 37,509 couriers and 3,854 mc donald incident report records.
— Daily Dark Web (@DailyDarkWeb) August 2, 2022
It is not the first time that Glovo has faced something like this. In May 2021, the company owned by Delivery Hero suffered another cyberattack, in which it indicated at all times that data such as passwords or customer card information was safe. The data of this new hack coincides with that of the previous oneimplying that the information is authentic.
In the sales forum, despite the fact that the offers for the database are still open, the attacker has been quite clear indicating that wants all the information to be sold at once: “Important! It is an exclusive database and I will only sell it once.” This implies that the price of it will probably be quite high, and that the information of the users will not be partially sold. It remains to be seen if The Spanish Agency for Data Protection takes action on the matter and imposes a new sanction on Glovo after the new leak.
Related topics: Applications