trending Market Intelligence /marketintelligence/en/news-insights/trending/mWmo6toujZGavnSqZZ9g0Q2 content esgSubNav
In This List

DoorDash discloses data breach that affects 4.9 million users

Podcast

Next in Tech | Episode 49: Carbon reduction in cloud

Blog

Price wars in India: Disney+ Hotstar vs. Amazon Prime Video vs. Netflix

Blog

Volume of Investment Research Reports on Inflation Increased in Q4 2021

Blog

Using ESG Analysis to Support a Sustainable Future


DoorDash discloses data breach that affects 4.9 million users

Food delivery company DoorDash Inc. on Sept. 26 disclosed that it had detected a systems breach that affects about 4.9 million consumers, delivery workers and merchants who joined the business platform on or before April 5, 2018.

In a blog post, the San Francisco-based company said a hacker had accessed information that included the last four digits of customers' payment cards and the last four digits of the bank accounts of delivery workers and merchants.

DoorDash said the information was not sufficient to make fraudulent charges to payment cards or to make fraudulent withdrawals from bank accounts, but it encouraged users to be vigilant and regularly check their payment cards and bank accounts for unusual activity.

DoorDash said that earlier in September, it became aware of "unusual activity" involving a third-party service provider, and it immediately launched an investigation and engaged outside security experts to assess the circumstances.

It said it determined that "an unauthorized third party" had accessed some DoorDash user data May 4. In addition to the payment card and bank account data, the information included customers' profiles, order history, addresses, phone numbers, emails and passwords in encrypted form.

The driving license numbers of about 100,000 delivery workers, which the company refers to as Dashers, were also accessed.

Users who joined the platform after April 5, 2018, are not affected.

DoorDash said it had taken immediate steps to enhance security across its platform and to block further unauthorized access.

"We deeply regret the frustration and inconvenience that this may cause you," it said in the blog post. "Every member of the DoorDash community is important to us, and we want to assure you that we value your security and privacy."