A threat actor has claimed a data breach affecting Dakota Dostavka (dakotadostavka.ru), a food delivery service operating in Russia. The actor is distributing a database allegedly containing 40,000 rows of customer order information.
According to the actor, the compromised data includes a wide range of personally identifiable information (PII) and order details. The allegedly compromised data includes:
- Full names
- Email addresses
- Telephone numbers
- Physical delivery addresses (city, street, house, apartment)
- Order details (including payment method and comments)
- Total order value
- Customer IP addresses
- User agent strings
