ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

KitchenPal Data Breach

kitchenpalapp.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 98,726
Breach date 14 Nov 2023
Added to tracker 24 Nov 2023
Data classes 8

What happened

In November 2023, the kitchen management application KitchenPal suffered a data breach that exposed 146k lines of data. When contacted about the incident, KitchenPal advised the corpus of data came from a staging environment, although acknowledged it contained a small number of users for debugging purposes and included passwords that could not be used. Impacted data included almost 100k email addresses, names, geolocations and incomplete data on dates of birth, genders, height and weight, social media profile identifiers and bcrypt password hashes.

Exposed data

Dates of birth Email addresses Genders Geographic locations Names Passwords Physical attributes Social media profiles

Recommended actions

  • Change your KitchenPal password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing KitchenPal — attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP