Cyber Incident Victim: Foodpanda Singapore

In mid-July 2019, Foodpanda Singapore's verified Instagram account was compromised by unauthorized actors, leading to abusive interactions with customers. The incident became publicly visible when customer Jenny Liang shared her experience on July 14 after receiving hostile direct messages from the compromised account. Liang had initially posted a critical review of her Foodpanda experience on Instagram, tagging the company's official account. Within minutes, she received a message stating "Delete this, you dumb w*****," which disappeared after being read. When Liang subsequently posted screenshots documenting this interaction, the hacked account responded with additional vulgar messages including "F*** you, b****" and "Suck my d***." Separately, Liang reported order fulfillment discrepancies where live chat support claimed her meal was being prepared at 7:45 PM, while delivery documentation indicated the order had been collected at 7:13 PM, though no direct connection between this service issue and the cybersecurity incident was established.

Foodpanda Singapore officially acknowledged the breach through a Facebook post on July 15, confirming their Instagram account had been hacked and advising customers to cease engagement with the compromised platform. The company stated its cybersecurity team was actively working to regain control and resolve the issue, though specific technical details about the intrusion method or duration of unauthorized access were not disclosed. Public evidence showed the account remained visibly altered following the announcement. The incident caused reputational damage through the dissemination of offensive messages to customers, with Liang's viral posts amplifying public awareness. No information was provided regarding whether the hackers accessed customer data beyond sending abusive messages, nor were details disclosed about the eventual account restoration process or whether law enforcement was involved in the investigation.