A major data breach has reportedly exposed sensitive user information from Pakistan’s local food delivery platform Foodpapa, according to claims made on social media by former team member of technology entrepreneur and ex-Senate e-commerce adviser Aun Abbas, Zulqarnain Abbas.
In a Facebook post, Zulqarnain Abbas alleged that a January 2026 backup containing data of nearly 240,000 accounts was leaked on a dark web forum.
He claimed the incident has raised serious concerns over the platform’s data security and has undermined claims by the Sheikhani Group regarding building Pakistan’s digital economy and a secure homegrown delivery service.
According to the post, the compromised data includes details of over 217,000 customers, around 22,000 riders, and 109 admin accounts.
The leaked information reportedly contains highly sensitive personal data, including names, phone numbers, email addresses, passwords, home addresses, and Computerized National Identity Card (CNIC) numbers.
The whistleblower advised users to immediately change their passwords and take precautionary steps, especially if they reuse credentials across multiple platforms.
FoodPapa, so far, did not comment on the alleged breach.
