Weee!, an American grocery delivery platform, has recently been the victim of a cyberattack, resulting in the data leakage of 11 million customers. The platform, which specializes in Hispanic and Asian cuisine, has been downloaded more than 2.6 million times and is active across the majority of the United States. The threat actor responsible for the breach has referred to the victims as Sayweee, which is the name of the platform's website. It is believed that the data was stolen in February 2023 and includes personal information such as first and last names, emails, phone numbers, addresses, delivery types, devices, and dates. Additionally, some of the records contain delivery notes that customers left for couriers, such as codes for entering buildings. The data could be used for a variety of malicious activities, including targeted frauds, spear phishing attempts, tracking, and unwanted contact. It could also be used to aid in identity fraud. Weee! has yet to comment on the situation.
This Cyber News was published on heimdalsecurity.com. Publication date: Wed, 08 Feb 2023 15:04:03 +0000