American alcohol delivery giant Drizly has admitted to suffering a major data breach that involved the theft of personal information of up to 2.5 million customers.
Information obtained by hackers included customers’ email addresses, billing addresses, dates of birth, hashed passwords, their IP addresses, and geolocation data associated with their addresses.
“In terms of scale, up to 2.5 million accounts have been affected. Delivery address was included in under 2% of the records. And as mentioned in our email to affected consumers, no financial information was compromised,” said a Drizly spokesperson.
The company said that no financial data was taken in the breach. However, a listing on a dark web marketplace from a well-known seller of stolen data claims otherwise.