8 comments

[ 3.3 ms ] story [ 32.3 ms ] thread
Hacker sent entire restaurant dataset and user dataset to (seemingly) all users's emails in an email titled “Chowbus Data”. I don't want to share user dataset link here.

The 800k-row User Dataset has first and last names, phone number, email addresses and mailing addresses. Email is sent with Chowbus’s sendgrid account.

agreed, I received the mail too.. seems to be hacked.
any possible theories on this?

leaked PII doesn't have credit card information

They seem to use Stripe to process payments instead of storing payment information themselves, so that might be why.
well, I wonder if it is legal or not; i can not log into the app now.
is it possible to share the user's data?
i dont think the users would like it to be shared again. if you are interested in checking if your account is affected, go to https://haveibeenpwned.com/