Skip to main content

Data breach at DoorDash compromises nearly 5 million accounts

The food delivery service says some users should reset their passwords.

Food delivery service DoorDash has announced that almost 5 million customer accounts were compromised in a data breach this past May.

The breach affects 4.9 million customers, delivery workers and restaurants who joined the platform on or prior to Apr. 5, 2018.

Anyone who joined after then is not affected.

The information taken in the hack includes names, email addresses, addresses, order history and phone numbers. What's more, the last four digits of payment cards were taken, but the "full payment card numbers or a CVV was not accessed."

"The information accessed is not sufficient to make fraudulent charges on your payment card."

Delivery workers and merchants had the last four digits of their bank account numbers taken, while 100,000 delivery workers had their driver's license numbers accessed.

Follow Bring Me The News on LinkedIn

"We take the security of our community very seriously," DoorDash said in a blog post Thursday. "Earlier this month, we became aware of unusual activity involving a third-party service provider. We immediately launched an investigation and outside security experts were engaged to assess what occurred.

"We were subsequently able to determine that an unauthorized third party accessed some DoorDash user data on May 4, 2019. We took immediate steps to block further access by the unauthorized user and to enhance security across our platform."

DoorDash delivers food from a number of restaurants and vendors across the Twin Cities, including fast food outlets such as McDonald's, Chick-fil-A, and Taco Bell, and a number of local restaurants.

Customers who opened their account before Apr. 5, 2018, are being advised to change their passwords out of "an abundance of caution."

You can find more information about the breach here, blog.doordash.com, or by calling its 24/7 call center at 855-646-4683.

Next Up

RogerEbnetMugshotYellowStone

Charges: Minnesota elementary school teacher sexually assaulted 3 boys

The incidents were captured on video taken inside an elementary school classroom.

Police tape

Person shot by police in St. Paul Monday evening

It happened around 6:10 p.m. on the city's East Side.

Kollie Jr.

Woman killed in Moorhead identified as suspect's mother

An appeal has been issued to find the suspect's vehicle, which remains missing.

Hamilton

Ticket details released for 5-week run of 'Hamilton' in Minneapolis

The tour of the production has been delayed twice due to the pandemic.

GummiesDeathByGummyBears

Minnesota Board of Pharmacy files lawsuit against 3 THC edible retailers

The board has received 46 complaints in the past four months regarding the products.

Screen Shot 2022-12-05 at 2.53.55 PM

ATF now investigating fire at Lyndale Avenue apartment building

It was the second fire at a vacant building owned by the same landlord that was being used by squatters in the past few months.

FB_IMG_1668547011137

Let the good times roll

Minnesota Roller Derby is back!

StumpysGoogleMaps

Beloved restaurant in southeastern MN to close after 40 years

A final night of celebrations is scheduled for Dec. 17.

PrinsburgGoogle

MN town shelves ordinance allowing residents to sue abortion providers

Attorney General Keith Ellison advised the town to not go forward with the ordinance.

Spring Street Tavern

Man shot dead inside Minneapolis tavern is identified

The suspect is being held on probable cause murder.

Related

Dunn brothers

Data breach impacts card users at Dunn Bros., Sebastian Joe's

A Minnesota company that provides point-of-sale services has confirmed a breach.

Payment information accessed in Delta data breach

Delta says a 3rd party company was breached in the fall.

First Delta, now Best Buy caught up in data breach

The Richfield company confirmed its customers are affected by the hack.

The Equifax data breach: What do you do next?

143 million consumers had their information compromised.

Is Equifax going to get away with compromising all our data?

The investigation into the credit-monitoring agency is being scaled back.

It turns out every Yahoo account was hit by the data breach a few years ago

The company now says hackers hit all 3 billion accounts, not 1 billion