DoorDash suffered a data breach after an unauthorized user gained access to the personal information of 4.9 million consumers, Dashers, and merchants.
The exposed information included email addresses, delivery addresses, order history, phone numbers, and hashed and salted passwords, last four digits of their credit cards or bank accounts consumers, dashers, and merchants.
The company notified all the affected individuals through the mail.
TPRM report: https://scoringcyber.rankiteo.com/company/doordash
"id": "doo15123922",
"linkid": "doordash",
"type": "Breach",
"date": "09/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 4900000,
'industry': 'Food Delivery',
'name': 'DoorDash',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': 4900000,
'type_of_data_compromised': ['Email Addresses',
'Delivery Addresses',
'Order History',
'Phone Numbers',
'Hashed and Salted Passwords',
'Last Four Digits of Credit '
'Cards',
'Last Four Digits of Bank '
'Accounts']},
'description': 'DoorDash suffered a data breach after an unauthorized user '
'gained access to the personal information of 4.9 million '
'consumers, Dashers, and merchants. The exposed information '
'included email addresses, delivery addresses, order history, '
'phone numbers, and hashed and salted passwords, last four '
'digits of their credit cards or bank accounts consumers, '
'dashers, and merchants. The company notified all the affected '
'individuals through the mail.',
'impact': {'data_compromised': ['Email Addresses',
'Delivery Addresses',
'Order History',
'Phone Numbers',
'Hashed and Salted Passwords',
'Last Four Digits of Credit Cards',
'Last Four Digits of Bank Accounts']},
'response': {'communication_strategy': 'Notified all affected individuals '
'through the mail'},
'threat_actor': 'Unauthorized User',
'title': 'DoorDash Data Breach',
'type': 'Data Breach'}