**Grubhub Confirms Data Breach: Here's What We Know**

The popular US food delivery platform Grubhub has been added to the growing list of companies affected by the recent Salesloft Drift security breach. Exclusive reporting from BleepingComputer reveals that hackers stole company data, and are now demanding payment in exchange for not leaking sensitive information on the dark web.

According to a statement issued by Grubhub, "We're aware of unauthorized individuals who recently downloaded data from certain Grubhub systems... We quickly investigated, stopped the activity, and are taking steps to further increase our security posture." While reassuring customers that sensitive financial information or order history was not affected, the company acknowledged that some data was indeed taken, leaving many questions unanswered about which specific types of information were compromised.

Notifying police and bringing in external cybersecurity experts, Grubhub has taken swift action to mitigate the damage. However, the root cause of the breach may come as a surprise: hackers exploited Grubhub's login credentials and secrets leaked through the Salesloft Drift attacks. For those unfamiliar with this incident, it began in August 2025 when hackers stole OAuth tokens for Salesloft’s Salesforce integration, leading to a series of sensitive data exfiltrations affecting dozens of organizations worldwide.

The ShinyHunters ransomware group is now demanding payment in bitcoin to prevent the leaked data from being released on the dark web. Notably, this group has abandoned traditional encryption methods and focuses solely on data exfiltration. Their claim of responsibility adds another notch to their track record of brazen attacks.

Grubhub joins a growing list of companies affected by the Salesloft Drift breach, including Dynatrace, Cloudflare, Palo Alto Networks, and many others (a full list can be found here). As cybersecurity threats continue to escalate, it's clear that businesses must prioritize robust security measures to protect against such breaches.

For those seeking protection from the increasing threat of ransomware and data exfiltration, our guide to the best antivirus software is available for download. Stay ahead of emerging threats with Bitdefender Total Security, Norton 360 with LifeLock, or McAfee Mobile Security – your business's security depends on it!

**What you need to know:**

* Grubhub has confirmed a data breach related to the Salesloft Drift incident. * Hackers exploited leaked login credentials and secrets to steal company data. * The ShinyHunters ransomware group is demanding payment in bitcoin to prevent data release on the dark web. * At least 31 companies have been affected by the Salesloft Drift breach, including Grubhub.

Stay informed about the latest IT and cybersecurity news with TechRadar Pro's expert insights. Sign up for our newsletter today!