• Grubhub has confirmed that hackers accessed its systems and stole data in a recent security breach. This disclosure was reported by security outlets citing the company’s acknowledgement.
• The incident involved unauthorized individuals downloading data from parts of Grubhub’s environment before the activity was detected and stopped.
• Grubhub says it investigated the activity, halted access, and is working with third-party cybersecurity experts and law enforcement.
• There are reports that the company is now facing extortion demands related to the breach.

Scope & Details Still Unclear

• Grubhub has not publicly confirmed exactly when the breach occurred, whether customer accounts were included, or how many individuals were affected.
• The company confirmed that sensitive financial information (like full payment data) and order histories were not affected in this specific incident.

Context & Background (Earlier 2025 Incident)

• Grubhub previously disclosed a major data breach in early 2025 involving a third-party support vendor’s compromised account, resulting in access to driver and customer contact info (names, emails, phones).
• That earlier breach also exposed partial card information (card type and last four digits) for some campus diners and hashed legacy-system passwords, though key account credentials and full financial details were not exposed.
• Grubhub responded by terminating the vendor’s access, rotating passwords, and strengthening monitoring systems.

Industry Impact & Security Takeaways

• This latest breach underscores growing cyber threats targeting delivery and digital service platforms. Many incidents now include data theft followed by extortion attempts.
• It highlights the risks associated with third-party vendor connections and the importance of strong incident response and threat detection measures.