Home Chef Meal Delivery Service Faces Customer Data Breach

By: Joshua B. Swigart

Home Chef, the popular weekly subscription meal kit service offered through grocer Kroger, recently faced a data security incident involving data from approximately 8 million customer records. Home Chef subscribers pay a fee to receive a box that contains all the ingredients and recipes to make dinners at home. Meal delivery services have gained popularity with consumers as they prepare and eat meals at home instead of dining out during the COVID-19 pandemic.

The company reported the following information was compromised in the data breach: customer name, email address, phone number, encrypted passwords, the last four digits of credit card numbers, and other account information such as frequency of deliveries. Mailing addresses may also have been compromised. Cyber criminals can use the frequency and address information to create a phishing email to lead customers to believe an email message is from Home Chef, which would then ask for additional sensitive data.

Home Chef sent an email to its impacted customers, and said that not all its subscribers were impacted. The company was one of several companies hacked by Shiny Hungers, a group that was attempting to sell data from 73.2 million user records from 11 different companies on the dark web.

If you are a Home Chef customer and feel you’ve been the victim of the data breach, or if Home Chef has notified you that your data has been disclosed contact Swigart Law Group for a free consultation. Swigart Law Grouphelps people who have been injured by banks, employers, drug and medical companies, or large corporations, and creates a meaningful and profound impact on the lives of people in the community. Our attorneys are experienced in the areas of consumer protection, privacy and data breaches. Unlike large law corporations, we hand-pick every case we take and we give each of our clients undivided personal attention