DoorDash has announced that the personal data of 4.9 million people on its program — including customers , dashers , and its merchants — has been compromised in a security rupture . Now is a good time to vary your password .
DoorDash herald the breach Thursday in ablog post . DoorDash said it initially notice “ strange activeness involving a third - party service provider ” earlier this calendar month , at which time it says it launched an investigation into the incident . The company said that its probe , which involved outside expert in security measures , found that the third - company accessed user data on May 4 .
DoorDash said that while not everyone on its platform was pretend in the incident , the 4.9 million people who may be impacted by the breach joined on or before April 5 , 2018 . ( If you joined after that , DoorDash says you ’re in the exculpated . )
Image: DoorDash
That expose data admit visibility epithet , speech sound numbers , emails , obstetrical delivery address ( which would likely admit home and work destination ) , order history , and hashed word . Some 100,000 dashers had their driver ’s licence numbers debunk in the falling out , and DoorDash tell that the exposed data of some platform users include the last four digits of their coin bank news report ( dashers and merchants ) or credit cards on data file ( customers ) .
DoorDash sound out that it ’s presently in the process of notifying affected parties . One current prole who received such an electronic mail from DoorDash and partake in that correspondence with Gizmodo was informed that “ we believe that some of your DoorDash user story information has been access . ” Beyond that , however , the email included well-nigh very language to what was published in the caller ’s public - face web log .
In both the email and in the company ’s poster , DoorDash said that while it does n’t think that substance abuser passwords have been compromised , it is “ out of an teemingness of caution ” encouraging concerned users or those who believe they may have been affected to change their countersign .
DoorDash stated that while it does n’t intend the bank entropy exposed would be enough to let a bad actor to make fraudulent charges or withdrawals , taken together with the other compromised information , it ’s in all likelihood a good melodic theme to keep an eye on your banking company account as well if you believe you ’ve been affected .
“ We exact immediate footstep to block further access by the unauthorized user and to enhance security across our platform , ” the company enunciate . “ These steps include adding additional protective surety layers around the data , improving security department protocols that order access code to our organization , and bringing in outside expertness to increase our ability to identify and repel threat . ”
doordashSecurity
Daily Newsletter
Get the best tech , skill , and civilization news in your inbox daily .
News from the future tense , delivered to your nowadays .
You May Also Like
