DoorDash has confirmed a cybersecurity incident that compromised the data of customers, drivers, and merchants. The breach stemmed from a social engineering scam targeting an employee. The company is notifying affected individuals and has established a dedicated call center for support.
DoorDash has announced it was the target of a cybersecurity incident that led to the exposure of customer, driver, and merchant data. The food delivery giant disclosed that the security breach originated after a DoorDash employee was successfully targeted in a sophisticated “ social engineering scam.” This type of attack often involves tricking individuals into divulging confidential information or granting unauthorized access to systems.
Once the unauthorized party gained access, they were able to compromise sensitive data stored within DoorDash's systems. The company's incident response team acted swiftly upon discovering the breach. They immediately moved to shut down the unauthorized party's access to prevent further data compromise, initiated a comprehensive internal investigation to ascertain the scope of the breach and identify the specific data affected, and promptly notified law enforcement agencies. DoorDash is committed to cooperating fully with the authorities in their investigation. While DoorDash did not specify the exact nature of the social engineering tactics employed, such scams often involve phishing emails, pretexting, or other methods to deceive employees into providing credentials or sensitive information. This incident underscores the importance of robust cybersecurity awareness training for all employees to safeguard against such attacks.\The compromised data included various personally identifiable information (PII) belonging to customers, delivery drivers, and merchants registered on the DoorDash platform. Specifically, the exposed data encompassed names, phone numbers, email addresses, and physical addresses. Importantly, DoorDash stated that highly sensitive information, such as payment card details, Social Security numbers or other government-issued identification numbers, was not accessed or compromised during the incident. This suggests that the attackers may have been unable to penetrate the systems that house this more sensitive financial or personal data or that this data was secured using separate encryption methods or security protocols. DoorDash is taking steps to notify all affected individuals, as required by applicable laws and regulations. The company understands the seriousness of this event and the potential impact it can have on those whose information has been exposed. Notification processes are already underway, and affected parties will be informed as quickly as possible. DoorDash is also offering support to those who might be concerned about the potential misuse of their data.\In response to the incident, DoorDash has established a dedicated call center to provide customers, drivers, and merchants with information and address any questions or concerns they may have. The call center is staffed by trained professionals who can provide guidance on what steps individuals can take to protect themselves from potential identity theft or fraud. The phone number for the dedicated call center is 1-833-918-8030. DoorDash is also likely taking additional steps to reinforce its security infrastructure and prevent future incidents. These measures may include implementing enhanced employee training programs, strengthening security protocols, and potentially investing in new security technologies. The company is committed to taking all necessary steps to protect the security and privacy of its users' data. This recent incident follows the news of a data breach at rental company Hertz, which also exposed customer personal information, indicating a trend of increased cybersecurity vulnerabilities across various industries. Cybersecurity remains a critical issue, and businesses must continuously improve their security posture to combat evolving threats and protect sensitive data from unauthorized access. The commitment of DoorDash to transparency by openly communicating the details of the breach, although required by law, highlights the company's commitment to maintaining user trust and taking swift action to mitigate potential harm. Further updates may be expected as the investigation continues
Doordash Data Breach Cybersecurity Social Engineering Data Exposure
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
DoorDash Driver Charged After Recording, Posting Video of Nude Customer, Police SayA DoorDash driver in Oswego is facing felony charges after police say she recorded a nude customer inside his home and shared the video on social media.
Read more »
NY DoorDash driver arrested after sharing video of naked customer passed out in his own homeToday's Video Headlines: 11/17/25
Read more »
New Data From DoorDash Shows Signs of Stability in Local EconomiesA new State of Local Commerce report from DoorDash suggests encouraging signs of stability in everyday American life.Sierra Waggoner was joined byJessica Lach
Read more »
DoorDash Cheeseburger Index Reveals Most Affordable Cities for Burger LoversThe DoorDash Cheeseburger Index unveils the cities where a full cheeseburger meal is most affordable, showing regional variations in food costs and highlighting the best value for burger enthusiasts.
Read more »
Donald Trump Suffers Two Major Legal Setbacks Within HoursTwo swift court rulings in New York and Tennessee stall Trump’s agenda, with growing judicial resistance to his enforcement plans.
Read more »
DoorDash confirms data breach affecting customers, drivers and businessesDoorDash says it was the victim of a cybersecurity incident that exposed information belonging to customers, drivers and merchants.
Read more »