Grubhub Data Breach and Extortion Attempt by ShinyHunters

First reported

15.01.2026 23:38

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Grubhub confirmed a recent data breach where unauthorized individuals accessed and downloaded data from its systems. The company stated that sensitive information such as financial data or order history was not affected. However, sources indicate that the ShinyHunters cybercrime group is extorting Grubhub, demanding Bitcoin to prevent the release of stolen Salesforce and Zendesk data. The breach is believed to be connected to stolen credentials from the recent Salesloft Drift data theft attacks.

Timeline

15.01.2026 23:38 1 articles · 23h ago

Grubhub Data Breach and Extortion Attempt by ShinyHunters
Grubhub confirmed a recent data breach where unauthorized individuals accessed and downloaded data from its systems. The company stated that sensitive information such as financial data or order history was not affected. Sources indicate that the ShinyHunters cybercrime group is extorting Grubhub, demanding Bitcoin to prevent the release of stolen Salesforce and Zendesk data. The breach is believed to be connected to stolen credentials from the recent Salesloft Drift data theft attacks.
Show sources

Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
Open in new tab

Information Snippets

Grubhub confirmed a data breach where unauthorized individuals accessed and downloaded data from its systems.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
The breach did not affect sensitive information such as financial data or order history.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
ShinyHunters cybercrime group is extorting Grubhub, demanding Bitcoin to prevent the release of stolen Salesforce and Zendesk data.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
The breach is believed to be connected to stolen credentials from the recent Salesloft Drift data theft attacks.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
Grubhub is working with a third-party cybersecurity firm and has notified law enforcement.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
In August 2025, threat actors used stolen OAuth tokens for Salesloft's Salesforce integration to conduct a data theft campaign.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38
ShinyHunters claimed to have stolen approximately 1.5 billion data records from Salesforce object tables for 760 companies.
First reported: 15.01.2026 23:38

1 source, 1 article
Show sources
- Grubhub confirms hackers stole data in recent security breach — www.bleepingcomputer.com — 15.01.2026 23:38