Maxxi-cafe.ru

In April 2022 the Russian food delivery service Maxxi-cafe based in Kursk suffered a data breach. The incident led to the exposure of customer personal information stored in their database. The leak was likely caused by a vulnerability in the website backend or an insecure database configuration. The data includes sensitive customer details such as phone numbers, names, physical delivery addresses, and IP addresses along with internal delivery comments. This breach poses risks of targeted phishing and physical privacy concerns for approximately 62000 users.