Details of the Grubhub Data Breach
The breach, which was discovered during an internal investigation, stemmed from unauthorized access to an account associated with the provider.
Upon detection, Grubhub immediately terminated access for the compromised account and severed ties with the third-party service provider. The investigation revealed that certain personal information was accessed.
Following the incident, Grubhub has taken several steps to enhance security and prevent future breaches, including:
- Partnering with forensic cybersecurity experts to conduct a full investigation.
- Strengthening credential security by rotating all potentially affected passwords.
- Deploying additional monitoring systems to detect and respond to anomalies more effectively.
What Information Was Involved?
The breach exposed names, email addresses, and phone numbers, as well as partial payment card information (card type and last four digits) for a subset of campus diners. Additionally, hashed passwords for certain legacy systems were accessed, prompting Grubhub to proactively rotate passwords that may have been at risk.
Grubhub assured customers that Marketplace account passwords, full payment card numbers, bank details, Social Security numbers, and driver’s license information were not accessed. While there is no evidence of password compromise for active accounts, Grubhub recommends customers use unique and strong passwords as a precaution.
How to Know if You Were Affected
If you received a data breach notification from Grubhub, your personal information may have been compromised. While most victims are officially informed via a ‘‘notice of data breach” in the mail, the consequences—such as fraudulent transactions and identity theft—can begin long before you receive the notice.
Steps to Take If You Were Affected by the Grubhub Data Breach
Stay Alert for Phishing Scams
Scammers may try to take advantage of the data breach by posing as Grubhub. Be wary of unexpected emails, texts, or phone calls requesting personal information. When in doubt, verify any communication directly with the company through official channels.
Monitor Your Credit and Financial Accounts
Keep a close eye on your bank statements, credit card activity, and credit reports for any unauthorized transactions. Set up account alerts to catch suspicious activity early. Take advantage of free credit reports and review them carefully for unfamiliar accounts or discrepancies.
Consider Freezing Your Credit
For added protection, request a credit freeze from all three major credit bureaus. This prevents anyone from opening new accounts in your name while still allowing you to use your existing credit. If you need to apply for credit, you can temporarily lift the freeze when necessary.
Class Action U, in partnership with KO Lawyers, is supporting individuals impacted by the Grubhub data breach. If your information was exposed in this breach, you may be eligible to join a class action lawsuit.
How Grubhub Class Action Lawsuits Help Victims Seek Compensation
Class action lawsuits allow individuals affected by large-scale data breaches like the Grubhub, to come together and pursue compensation collectively. These lawsuits can provide a more efficient and cost-effective way to hold companies accountable for failing to protect personal information. Learn how joining a class action lawsuit can potentially help you to seek compensation for:
- Loss of privacy
- Time spent addressing the breach
- Out-of-pocket costs
- Emotional distress
A successful case could also compel Grubhub, to improve its security measures and prevent future breaches. Reach out to Class Action U today to determine your eligibility for a data breach class action lawsuit and the compensation that may be available to you.