FreshMenu 2016 Data Breach Reportedly Exposed Records of 110,000 Users, Company Responds

Advertisement
By Ankit Chawla | Updated: 11 September 2018 13:04 IST
Highlights
  • FreshMenu is a food delivery platform started in 2014
  • Data breach is claimed to have access to details of over 1,10,000 users
  • The data breach was first reported on HaveIBeenPwned.com

FreshMenu reportedly acknowledged being aware of the breach, but did not notify impacted users

Food delivery provider FreshMenu started operations in India back in 2014, and has since been selling its products on its own platform as well as through aggregator apps like Zomato, Swiggy, and UberEATS. A report has now surfaced online that claims FreshMenu had a massive data breach back in 2016; a breach that exposed personal data of over 110,000 customers including their names, email addresses, phone numbers, home addresses, device information, and order histories. It is currently not known whether any customer payment information was outed from FreshMenu's database. The company has responded to the claims, and you can read the statement in its entirety at the bottom of this article.

"When advised of the incident, FreshMenu acknowledged being already aware of the breach but stated they had decided not to notify impacted customers," stated HIBP (HaveIBeenPwned.com), run by security researcher Troy Hunt, raising grave concerns around the proper communication around privacy violation.

One of the app's users from India claims that their email address was part of the breach. The breach date is said to be July 1, 2016, but the information was added to the HIBP database on September 10, 2018. In a tweet, HIBP said that 75 percent of the leaked addresses were part of its database.

Advertisement

FreshMenu founder Rashmi Daga in a statement responding to the claims said that no point was information such as "user passwords or payment-related information breached," adding that the immediate focus after the breach was to "resolve the vulnerability."

Advertisement

This is not the first instance wherein the Indian food delivery space has experienced a data breach. Back in May last year, industry leader Zomato's data was "hacked" and user data of 17 million of its customers was apparently stolen. While sensitive data such as usernames and passwords were leaked, Zomato - at that time - claimed that no payment information went into wrong hands. Furthermore, a Gemalto study noted that this was the sixth biggest data breach globally in all of H1 2017.

Hi There,

You may have seen Twitter posts and media articles about a data breach at FreshMenu back in 2016. I owe every user of FreshMenu a sincere apology for the breach and for not addressing this matter proactively. Trust is integral to the relationship we share with you and we regret the event that led to this trust being compromised. In that moment, we believed that the since the breach was limited, we would focus on resolving the vulnerability and making sure that no further breaches happen. The stolen information comprised of names, email-ids and phone numbers from a test server holding transaction information. At no point during this time was information such as user passwords or payment related information, breached. We have always worked with secure payment partners to store payment information in PCI DSS compliant systems on their side and that is absolutely safe. Regardless, it is clear in hindsight that we could have communicated this information to our users at that time.​​​​​​​

Advertisement

Further on, we took immediate action and worked with AppSecure and Anand Prakash, India’s best known white hat hacker, to audit our systems and help us make our system’s security robust. Our team has worked harder to make sure the FreshMenu app and site are thoroughly secure, and our commitment does not end there. We work tirelessly on creating the best for you because that is our top priority.

FreshMenu began four years ago in my home kitchen with one simple purpose- to bring good food to your table, whenever and wherever you are hungry. Today, our aim remains the same, and our determination to serve you only gets stronger. I wanted users to have the world of food available at the push of a button, and the trust that it is being cooked fresh in a kitchen near them. Like with our food, in every aspect of our offering, our mission is to serve you as best as we can.

Advertisement

If you have any concerns or queries, do not hesitate to write to me at rashmi@freshmenu.com, and we will reach out to you right away.

Regards,

Rashmi Daga

Founder, FreshMenu

 
Post your comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: FreshMenu, Data Breach, Zomato
Google News Gets Data-Saving Features for Android Go, Low Data Bandwidth Users
Xiaomi Redmi Y2's MIUI 10 Global Stable ROM Update Now Rolling Out in India
Advertisement

Related Stories

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Apple to Reportedly Launch Low-Cost MacBook in 'Playful Colors' in March
  2. Samsung Galaxy S26+ Reportedly Listed for Sale Online Ahead of Launch
  3. Deals on iPhone 17, Google Pixel 10 and More During Flipkart Sale
  4. Xiaomi 17 Series Leak Hints at Imminent Launch Ahead of MWC at These Prices
  5. Oppo Find N6 Geekbench Listing Hints at New Snapdragon 8 Elite Gen 5 Variant
  6. iPhone 18 Series May Arrive Without a Physical SIM Slot in This Region
  7. Best TWS Earphones Under Rs 30,000: AirPods Pro 3, Sony WF-1000XM5, More
  8. Xiaomi Civi 6 Could Launch in China Soon With Customisable AI Shortcut Key
#Latest Stories
  1. Sony Could Reportedly Delay PS6 to as Late as 2029 Due to RAM Shortage
  2. iPhone 18 Series to Drop SIM Card Slot in Europe to Make Room for Slightly Larger Battery: Report
  3. Poco X8 Pro Spotted on Geekbench With MediaTek Dimensity 8500 Ultra SoC, Android 16
  4. Xiaomi 17, Xiaomi 17 Ultra Global Price Details, Launch Date and Colour Options Leaked
  5. X Building Smart 'Cashtags' to Let Users Check Cryptocurrency Prices in Real-Time
  6. Samsung Galaxy A27 5G Listing on IMEI Database Suggests a Galaxy A26 Successor Is on the Way
  7. Anthropic Inaugurates First Indian Office in Bengaluru, Starts Hiring Local Talent
  8. Apple Tipped to Adopt Samsung's Privacy Display Technology for MacBook Models by 2029
  9. Oppo Find X10 Series Tipped to Launch in H2 2026 With Built-In Magnets for Wireless Charging
  10. AMD and TCS to Co-Develop Helios AI Data Centre Architecture, Deliver 200MW Data Centre Blueprint
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.