pee !  grocery

The Pee! The Asian and Hispanic food delivery service suffered a data breach exposing the personal information of 1.1 million customers.

pee ! claims to be the largest Asian and Hispanic grocery store in North America, delivering food to 48 states in the United States via warehouses across the country.

On Monday, a malicious actor named “IntelBroker” started leaking data from Weee! on the Breached forum hacking and data breach.

According to the forum post, “In February 2023, a database of 11 million customers belonging to the Sayweee was stolen by hackers.”

Forum post leaking Weee data!
Forum post leaking Weee data!
Source: BleepingComputer

The leaked database contains Weee! customer first and last names, email addresses, phone numbers, device type (iOS/PC/Android), order notes and other data used by the delivery platform.

After contacting Weee! About the breach, the company confirmed to BleepingComputer that customer information was stolen during the data breach.

“We recently became aware of a data breach that affected certain customer information,” read Weee!’s full statement.

“We can confirm that no customer payment data has been exposed as Weee!, does not store any customer payment information in our databases. For customers who placed an order between July 12, 2021 and July 12, 2022 , information such as name, address, email addresses, phone number, order number and order comments may have been impacted.”

“We have notified all customers of the issue and will individually notify all affected customers if their information has been exposed.”

“Safety is a top priority for us and we are undertaking a thorough review to ensure we continue to uphold the trust the Weee! community places in us.”

However, pee! points out that the payment information was not exposed as they do not keep this data in their database.

While the threat actor said the leak contained 11 million customers, Troy Hunt of data breach notification service Have I Been Pwned told BleepingComputer the leaked data only included 1.1 million. unique email addresses.

The extra records are likely due to the same customer placing multiple orders.

To check if your information was exposed in this breach, you can search for your email address at Have I been pwned later today after adding the data.

Once data has been added to Have I Been Pwned, existing members of the notification service will automatically be notified of the data breach via email.


Source link