Primary Menu

Around the Web

CLARK, NEW JERSEY - APRIL 27: Clark resident Jen Valencia shops for a customer as she supplements her income working for Instacart at Acme Market on April 27, 2020 in Clark, New Jersey. Instacart has experienced a massive surge in customer demand and employment recently due to lockdowns and other restrictions caused by COVID-19. (Photo by Michael Loccisano/Getty Images)

If you use Instacart, your name, credit card data including the last 4 digits, address, and information on what you bought as recently as yesterday may be for sale on the dark web. As of yesterday, sellers in two dark web stores were offering info from what appeared to be 278,531 accounts. Instacart has denied any breach of their data.

“It’s looking recent and totally legit,” Nick Espinosa, the head of cybersecurity firm Security Fanatics, told BuzzFeed News after reviewing the accounts being sold.

Some users have noticed some abnormalities in their accounts, with one writing, “An email saying I was locked out of my account because of too many attempts.” Another said, “Woke up to 25 emails saying someone was trying to login to my Instacart account.”

However, an Instacart spokesperson told BuzzFeed that “We are not aware of any data breach at this time. We take data protection and privacy very seriously.”