A hacker has reportedly obtained information on up to 2.5m users of the US online alcohol delivery service Drizly.
The data includes customer email addresses, date of birth, hashed passwords and, in some cases, delivery address.
“In terms of scale, up to 2.5 million accounts have been affected,” a company spokesperson was quoted as saying by technology sector journal TechCrunch. “Delivery address was included in under 2% of the records.
Drizly has advised users of its smartphone app-based service to change their passwords.
The company says no financial information was compromised.
When the data breach occurred is unknown, but TechCrunch refers to a listing on a dark web marketplace “from a well-known seller of stolen data” being posted last February.
Registration now OPEN for PrivSec Global
Taking place across four days from 30 Nov to 3 Dec, PrivSec Global, will be the largest data protection, privacy and security event of 2020.
Reserve your place before 2nd October, and receive VIP access to PrivSec Global which includes priority access to limited space sessions, workshops, networking opportunities and exclusive content.
We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.