Grubhub Users Targeted by Fraudulent Cryptocurrency Email

Recently, Grubhub users received a deceptive message that appeared to come from an official company email. The email promised a 10x return on Bitcoin sent to a specific wallet.

This fraudulent message claimed to be part of a “Holiday Crypto Promotion” and originated from a subdomain that Grubhub usually uses to communicate with partners and restaurants.

The scam read something like, “30 minutes left in the Holiday Crypto Promotion. Grubhub will multiply Bitcoins sent to this address by 10x.” For example, it stated that sending $1,000 would yield a return of $10,000.

Some of these emails came from addresses like ‘merry-christmast@b.grubhub.com’ and ‘crypto-promotion@b.grubhub.com,’ with names of recipients included in the messages.

This seems to be a classic crypto scam, where individuals are tricked into transferring their money under the guise of receiving more in return.

While there’s been some chatter online about the situation, Grubhub has not revealed many specifics. They described the fraudulent emails as resulting from a DNS hijacking attack, which enabled the scammers to circumvent authenticity checks.

However, a representative from Grubhub confirmed they are aware of the issue and are taking steps to prevent future occurrences. “We are aware of fraudulent messages that appear to have been sent from Grubhub to some of our reseller partners. We immediately investigated and are taking steps to contain the issue and prevent it from happening again,” the spokesperson stated.

This incident follows an earlier breach where attackers accessed sensitive information such as names, email addresses, and phone numbers of customers and vendors. This breach stemmed from an account linked to a third party that provided support services for Grubhub.