A group of hackers accessed private data for Glovo, a Spanish delivery app, Bloomberg reported.
The hacking encompassed private login information for tens of millions of Glovo customers, drivers and employees, the report stated.
The data breach was discovered by the cybersecurity firm Yarix, according to Bloomberg. The firm said Tuesday (May 11) that it had evidence attackers were trying to sell the stolen data on the dark web, meaning part of the internet not accessed by conventional web browsers. There were reportedly around 160 gigabytes of names, phone numbers, passwords and data related to customers and selling for around $85,000.
“While the unauthorized third party was able to access IBAN and Tax ID numbers for a short period of time, we can confirm no credit/debit card data was accessed,” a Glovo spokesman said, per Bloomberg.
Bloomberg reported that it hasn’t been able to verify exactly the authenticity of the information that is said to be for sale or what time period it came from. There was also a Forbes report on May 4 that Glovo data had been breached. It’s not currently known if that was the same hack as the one discovered by Yarix.
Yarix CEO Mirko Gatto said it is “strongly recommended for Glovo users to change their password and to keep an eye on their credit cards, to verify that there are no abnormal charges,” according to Bloomberg.
Data from a PYMNTS report earlier this month found that such data breaches could often prove fatal from a customer standpoint, with 65 percent of eCommerce customers saying that they would be likely to quit using a company’s services after even one instance of a data breach.
This has put added pressure on companies to tighten their data security and make sure no breaches happen.
While there’s no perfect strategy to combat the problem, the PYMNTS study suggested that some factors that could rebuild trust include being asked to provide additional authentication factors like passwords or PIN codes, or having positive experiences with the merchants in question beforehand.