Doordash data breach exposes names, addresses, phone numbers, and more

A Doordash data breach has exposed the personal data of an unspecified number of customers, including name, phone number, email address, and physical address.

The food delivery company says that it has implemented a number of security measures in response, including reporting the attack to law enforcement …

The company is being coy about the number of users affected.

Our team recently identified and shut down a cybersecurity incident that involved an unauthorized third party gaining access to and taking certain user information […]

Our investigation has determined that some users whose data is maintained by DoorDash were affected in connection with this incident. 

The personal information accessed varied by individual and may have included:

• First and last name 

• Phone number

• Email address 

• Physical address

DoorDash says that no bank or payment card information was obtained.

When data breaches occur, companies do often use vague terms like “some” customers. This could obviously mean anything from a relatively small number to almost everyone, but deliberate use of vague language obviously raises suspicions that it is more likely to be towards the latter end. DoorDash says it has notified affected DoorDash users “where required.”

Since that qualification is less than reassuring, you may want to check whether your data was exposed. The company has provided two phone numbers for a dedicated call centre: +1-833-918-8030 (toll-free) for US and Canada and +1-214-393-3293 for international callers. Cite reference code B155060 when you speak to operators so that they know the reason for your call.  

The company says it has responded with four measures:

• Deployed new enhancements to our security systems to help prevent and detect malicious activities of this nature 
• Implemented additional training and awareness for our employees around various social engineering scams 
• Brought in an external firm to assist in our investigation and provide specialized support
• Referred the matter to law enforcement for ongoing investigation  

As always, when you may have been the victim of a data breach, this increases the likelihood of you being targeted with phishing attacks. Never click on a link emailed to you unless you are expecting it. It’s always safest to log in to websites from your own bookmarks or by typing the URL manually.

Highlighted accessories

• Official Apple Store on Amazon
• Apple 40W Dynamic Power Adapter for iPhone 17
• Official Apple iPhone Air cases and bumpers
• iPhone Air MagSafe Battery
• Official iPhone Air case
• Official iPhone 17 cases
• Official iPhone 17 Pro cases and Pro Max cases

Photo by Killian Cartignies on Unsplash