Saturday, November 2, 2024
HomeCyber Security NewsHackers Stole 4.9 Million Users Data from Food Delivery Service DoorDash

Hackers Stole 4.9 Million Users Data from Food Delivery Service DoorDash

Published on

Malware protection

DoorDash announced a data breach that impacts 4.9 million consumers, Dashers, and merchants who signed up with the platform on or before April 5, 2018.

The company has learned an unusual activity earlier this month, they have launched an investigation with assistance from external security researchers. The investigation determines an unauthorized third party to DoorDash user data on May 4, 2019.

What are the DoorDash Data Exposed

The company has not provided any details about how the hackers gain access to the data stored and they confirmed that they have blocked the unauthorized user.

- Advertisement - SIEM as a Service

Exposed data includes names, email addresses, delivery addresses, order history, phone numbers, as well as hashed, salted passwords, last four digits of payment card details, last four digits of bank account numbers 100,000 Dashers driver license.

According to the report, not all the customers who joined before April 5, 2018, are affected. Also the companies no user joined after April 5, 2018, were affected.

“We took immediate steps to block further access by the unauthorized user and to enhance security across our platform.”

“We do not believe that user passwords have been compromised and the information accessed is not sufficient to make fraudulent charges on payment cards or fraudulent withdrawals from bank accounts.” DoorDash said.

The company started notifying affected users, if you are the one affected then it is recommended to reset their DoorDash password associated with the DoorDash account.

DoorDash is a San Francisco–based food delivery service found in 2013, the company delivers door-to-door delivery from restaurants on-demand.

Related Coverage

Biometric Security Platform Data Breach Leaked Millions of Users Facial Recognition & Fingerprinting Data

British Airways Facing £183.39 Million Fine Under GDPR for 2018 Data Breach

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS...

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues

White House National Cyber Director, CEOs, Key Financial Services Companies, Congressional and Executive Branch...

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan...

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS...

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan...

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on...