A threat actor claims to have obtained and released a database allegedly belonging to HungerRush, a U.S.-based restaurant technology and point-of-sale platform provider, containing more than 26.8 million customer records.
The claim was posted on May 30 and alleges the dataset contains customer personally identifiable information along with restaurant and merchant-related data tied to the HungerRush platform.
BreachNews has not independently verified the authenticity of the alleged database or the number of records claimed by the threat actor.
According to the post, the dataset includes customer names, email addresses, phone numbers, physical addresses, dates of birth, and additional restaurant-related metadata. The threat actor also shared sample records and made the purported database available for download.
Restaurant platform allegedly affected
HungerRush provides cloud-based restaurant technology services including point-of-sale systems, online ordering, delivery management, payment processing, loyalty programs, and customer engagement tools used by restaurants across the United States.
The alleged database appears to contain both customer information and records associated with restaurants operating on the platform. Database structures published alongside the claim reference restaurant contact information, domains, branding details, ordering links, survey configurations, reporting settings, and other operational fields.
If authentic, the alleged exposure could impact both restaurant operators and consumers whose information may have been stored within the platform.
Claim follows earlier reports of extortion activity
The latest post follows reports from March in which restaurant operators and consumers discussed receiving messages alleging that HungerRush data had been compromised. Screenshots shared online at the time appeared to show extortion-related communications claiming that restaurant and customer information was at risk.
An IT services provider also reported observing multiple organizations receive HungerRush-themed extortion emails during the same period, though some recipients reportedly did not appear to have any direct relationship with the platform.
It remains unclear whether the database now being distributed is connected to those earlier claims or represents a separate incident. The claim also follows a recent trend of alleged customer database exposures affecting consumer-facing platforms, including BreachNews’ reporting on an alleged 7 million-record Ramen Kuroda database leak.
Sample records appear recent
The sample records published with the alleged database contain timestamps from 2025, suggesting at least some of the information may be relatively recent. However, the origin, completeness, and accuracy of the data remain unverified.
While the threat actor claims the database contains more than 26.8 million records, no independent analysis has confirmed the scope of the alleged exposure. Large record counts cited in breach claims can represent unique customers, historical entries, duplicate records, or multiple datasets combined into a single figure.
The apparent availability of downloadable data distinguishes the claim from many forum listings that provide only screenshots or descriptions. However, further validation would be required to determine whether the data originated from HungerRush and whether the claimed volume is accurate.
HungerRush had not issued any public statement regarding the claim at time of publication.
