Drizly

In July 2020 the alcohol delivery service Drizly suffered a significant security breach when a hacker gained unauthorized access to their database. The incident reportedly occurred after a developer account was compromised allowing the attacker to steal customer information from a cloud server. The stolen data was subsequently offered for sale on dark web marketplaces and later widely circulated. The breach affected approximately 2.5 million users and included sensitive details such as bcrypt hashed passwords and physical locations. Following the incident federal authorities in the US took action against the company for security failures.