Coffee Meets Bagel (CMG) describes itself as a dating site for those looking for quality relationships. Last month, it suffered what was initially described as an “outage.” Now we learn that the “outage” was a cyberattack where the threat actor deleted company data.
An FAQ updated on September 6 explains:
We determined that the outage was the result of an outside actor who maliciously deleted company data and files.
Their FAQ focuses on how it will compensate users for the outage. It does not state whether there was any ransom demand to get data returned. If there wasn’t, what was the motivation? Was this the work of an irate customer? And did the attacker just delete data or keep a copy and then delete the databases?
DataBreaches sent an inquiry to CMB, but no reply has been received.
This is not the first cyberattack CMB has experienced. In February 2019, DataBreaches reported that user data from 6.1 million users was up for sale on DreamMarket by gnosticplayers.