Spanish Delivery App Glovo Suffers a Data Breach

Barcelona-based on-request delivery app Glovo suffered from a cybersecurity attack after a malicious threat actor accessed its systems via an old administrator platform.

Glovo is a delivery service based in Spain. It currently services millions of customers across 20 countries, delivering all types of items ranging from food to household items.

ADVERTISEMENT

The breach was first broken out to the public by Forbes last Tuesday, May 4, 2021, with the news site saying that chief technology officer Alex Holden of Hold Security, a cybersecurity company, first found the breach. Glovo was informed of the incident on April 29, 2021.

Glovo Suffers a Data Breach

Based on the report released by Forbes, Holden reportedly found screenshots and videos from the hacker who gained access to Glovo’s computer systems.

ADVERTISEMENT

A week later after the incident, Bloomberg reports that hackers who successfully accessed the systems of Glovo were attempting to sell the database and confidential data in question on the dark web. In total, the hackers were asking for around $85,000 for the sale of 160 gigabytes worth of data.

Among the compromised information including the names of customers, phone numbers, passwords, and data relating to the customer payments systems, notes Bloomberg.

In a statement, a representative from Glovo said, “While the unauthorized third party was able to access IBAN and Tax ID numbers for a short period of time, we can confirm no credit/debit card data was accessed.”

ADVERTISEMENT

Bloomberg has yet to confirm if the data being sold on the dark web are the same as the initial data obtained by the breach as a different security firm under the name of Yarix approached them regarding the incident.

Although Glovo maintained that no financial information has been compromised in the matter, the chief executive officer of Yarix, Mirko Gatto, said that his cybersecurity firm was able to get access to some of the information available on the stolen database. According to Bloomberg, these include the access credentials to the systems of Glovo, as well as payment details.

Following the incident, Glovo has since blocked the malicious threat actor and added measures to secure its platform. As part of its efforts, the company said that they blocked access to the affected system last Friday after placing the system in question behind the firewall.

Forbes also states that the firm has launched an investigation regarding the matter. Moreover, the company has also reached out to the data protection agency of Spain, Agencia Española de Protección de Datos (AEPD) to provide the agency with the necessary details needed to further the investigation.

No posts to display