DoorDash

Food delivery firm DoorDash suffered a data breach exposing customer and employee data that was compromised in a cyberattack on Twilio.

The threat actor gained access to the company's internal tools using stolen credentials from a third-party vendor that had access to their systems.

As a response, they disabled the vendor's access to their system and contained the incident.

The exposed information included the names, email addresses, delivery addresses, and phone numbers of consumers. In addition, for a small subset of customers, the hackers accessed basic order information and partial credit card information, including the card type and the last four digits of the card number.

Source: https://www.bleepingcomputer.com/news/security/doordash-discloses-new-data-breach-tied-to-twilio-hackers/

"id": "DOO0162922",
"linkid": "doordash",
"type": "Breach",
"date": "08/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"