DoorDash has announced that it suffered a data breach on May 4, 2019, affecting 4.9 million consumers, DoorDash workers, and merchants. In a blog post, DoorDash explains that it took immediate steps to block further access by the unauthorized third party, and it is reaching out directly to affected users.
Accessed user data includes names, emails, delivery addresses, phone numbers, and in some cases, the last four digits of consumer payment cards. For employees and merchants, the last four digits of bank accounts were also accessed. Users are being encouraged to reset their passwords and reach out directly with questions.