Cyber Incident Victim: Foodmandu
Date:
Mar 2020
Location:
Nepal
Summary
A Nepal-based food delivery service experienced a data breach when a hacker compromised its web application, leading to unauthorized access of customer information including names, physical addresses, email addresses, and phone numbers. The attacker, identifying as Mr. Mugger, publicly disclosed approximately 50,000 user records via Twitter. The company promptly addressed the security vulnerability upon detection and engaged with law enforcement's cybercrime unit to mitigate risks. While confirming no operational disruption, the organization committed to resolving the incident and safeguarding the exposed data.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On March 7, 2020, Foodmandu, a Kathmandu-based food delivery service, experienced a cybersecurity breach resulting in unauthorized access to its customer data. The attack occurred overnight, compromising names, physical addresses, email addresses, and phone numbers of users. A hacker operating under the Twitter alias "Mr. Mugger" publicly claimed responsibility by dumping records of approximately 50,000 customers and sharing a link to the exposed data repository. Company CEO Nidhaan Shrestha confirmed the breach through a public statement issued on March 8, attributing the incident to vulnerabilities in their web application infrastructure. The disclosure revealed that attackers exploited specific technical loopholes to extract sensitive customer information without immediate detection.
Foodmandu's security team identified and remediated the web application vulnerabilities shortly after discovering the breach on March 8. The company initiated contact with Nepal's Cyber Crime Division to coordinate investigation efforts and formally requested protective measures for the leaked datasets. Despite the data exposure, Foodmandu maintained uninterrupted commercial operations throughout the incident response period. Management emphasized ongoing efforts to resolve residual issues while assuring customers of system stabilization. No financial data or transaction records were confirmed as compromised during the breach according to the company's official communications.