There may have been a breach of hungerrush.com

Welcome • User Guide
ToS • Privacy • Canary
Donate • Bugs • License

©2026 Poal.co

1.2K

• (edited )

This morning I received a number of emails from hungerrush, an online menu/ordering service. I've used them before when ordering pizza, in particular Jet's Pizza uses them for their order backend.

The emails indicate that the sender is has contacted hungerrush, has not received a reply, and is going to do malicious things with their database if they don't comply. Header analysis seems to indicate that the sender information is correct, although some tools seem unsure. Information in the email seems to indicate that it's a flex on the scammer's part and isn't directed at me.

I've notified some interested parties of this potential breach, but I thought it might be prudent to drop a note here for anyone that may have used that service.

email analysis

This morning I received a number of emails from hungerrush, an online menu/ordering service. I've used them before when ordering pizza, in particular Jet's Pizza uses them for their order backend. The emails indicate that the sender is has contacted hungerrush, has not received a reply, and is going to do malicious things with their database if they don't comply. Header analysis seems to indicate that the sender information is correct, although some tools seem unsure. Information in the email seems to indicate that it's a flex on the scammer's part and isn't directed at me. I've notified some interested parties of this potential breach, but I thought it might be prudent to drop a note here for anyone that may have used that service. [email analysis](https://poal.co/static/images/867c606660e4e482.png)

You are currently inside a comment thread.

Click here to see all the comments (5).

[–] • 1 pt

You have to take an already known scammer's word for it. That's not any assurance at all.

parent
link

[–] • 1 pt

Hence the need for a third party. Once a third party can vouch, the value of maintaining positive status with them exceeds that of not returning access after the ransom is paid.

Think of the amount of effort that goes into gaining control of one of these systems. The win rate of actually getting paid the ransom is probably abysmally small since, as you said, there’s no reason to trust someone you already know is a hacker.

If that third party “plays fair” rating got the payout up to even 30% it’d be worth it to stay in their good graces.

On the other side of the equation, some of the legitimate companies whose systems get compromised probably would be willing to pay a ransom, if they had some reasonable assurance it’s only a one time hit and they get access back.

parent
link

/s/TellPoal

created ago

About this sub

This sub is text post only.

If you want to add pics in your post, use https://pic8.co and then paste the short link in the post content.

Post whatever you would like to tell Poal.
Tellpoal is for telling things, not just for posting links
If it’s not telling Poal something, please post it to the appropriate sub
If what you want to say is NSFW, please mark your post as such.
No violating Poal ToS
NO POSTS ENCOURAGING ANYONE TO END THEIR LIFE. Will be referred to site owner and admin for further review.