EatStreet

In May 2019 the online food delivery service EatStreet suffered a significant data breach affecting over 6 million users. An unauthorized third party gained access to the database through a security vulnerability. The exposed data included personal details of customers and delivery partners such as names and contact information. Additionally payment card information was partially exposed including the last four digits of cards and expiration dates alongside hashed passwords stored using the bcrypt algorithm. The company notified affected users and implemented additional security measures to prevent future incidents.