User records of Uber Eats, an American online food ordering service, have been leaked by a threat actor on Dark Web. Cyble, a cybersecurity firm came across the data after its dark web and deep web monitoring.
The security researchers at Cyble revealed that a total of 9 TXT files were leaked by the perpetrator which contained valuable information about Uber Eats delivery drivers, delivery partners, and customer details.
The leaked files included login credentials of 579 customers. Whereas, sensitive information about 100 delivery drivers such as their full name, contact number, bank card details, login credentials, and account creation date was also posted.
It is noteworthy that previously, the cyber threat intelligence firm, Cyble was the first to reveal about 530,000 Zoom account credentials that were sold on the dark web for a fraction of a penny. Not only this, but the IT firm also identified attackers who allegedly hacked a global Chinese company, Huiying Medical. The threat actors involved in the theft sold the data on the dark web.
It is worth noting that data delivery service is valuable for cybercriminals since there is a potential to access customers’ payment cards and personal details in one shot. Previously, Zomato, Foodora, and Dunzo also suffered data breaches leaking data of millions of users.
As for Uber Eats, keep in mind that this doesn’t suggest that the company has suffered a data breach. It is possible that attackers were able to collect the data from third-party apps/platforms.
Here is how you can keep your personal information safe
- Never share sensitive or personal information via email, SMS, or direct messages.
- Use two or multi-factor authentication for your accounts as well as ensue strong passwords that are difficult to decrypt or decipher.
- Also, monitor your financial transactions, if you feel something is out of the blue, immediately contact your bank.
- Download a trusted anti-virus solution or use a pre-installed security app on your devices for privacy permissions, virus scan, and payment protection.