Delivery service data breach ‘affects up to 2.5m customers’

A hacker has reportedly obtained information on up to 2.5m users of the US online alcohol delivery service Drizly.

The data includes customer email addresses, date of birth, hashed passwords and, in some cases, delivery address.

“In terms of scale, up to 2.5 million accounts have been affected,” a company spokesperson was quoted as saying by technology sector journal TechCrunch. “Delivery address was included in under 2% of the records. 

Drizly has advised users of its smartphone app-based service to change their passwords.

The company says no financial information was compromised.

When the data breach occurred is unknown, but TechCrunch refers to a listing on a dark web marketplace “from a well-known seller of stolen data” being posted last February.


Registration now OPEN for PrivSec Global
Taking place across four days from 30 Nov to 3 Dec, PrivSec Global, will be the largest data protection, privacy and security event of 2020.

Reserve your place today and gain access to the entire event free of charge. With all sessions available to view live or on-demand, you can build a personalised agenda based on your key focus topics and make the event fit around your work schedule.

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.