• About
  • Advertise
  • Careers
  • Contact
Monday, March 20, 2023
No Result
View All Result
NEWSLETTER
Cyber360 News
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
No Result
View All Result
Cyber360 News
No Result
View All Result
Home Data Breach

DoorDash data breach hits 4.9 million customers, merchants and drivers

by Cyber360 News
November 11, 2019
in Data Breach
0
DoorDash data breach hits 4.9 million customers, merchants and drivers
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter

Food delivery service DoorDash confirmed a data breach affecting 4.9 million customers and merchants took place in May and included general PII and partial payment card information.

The company learned in early September that a third-party vendor had been accessed on May 4, 2019 and was able to gain access to information including names, email addresses, delivery addresses, order history, phone numbers and hashed, salted passwords. Additionally, the driver’s license numbers of at least 100,000 Dashers were accessed and the last four digits of some customer credit cards were also exposed, but not the full number or CVV, DoorDash said.

Newer customers were not impacted by the breach. DoorDash said consumers, “Dashers,” and merchants who joined on or before April 5, 2018, are affected, but those who joined after April 5, 2018 are not affected.

The company has obtained the services of a cybersecurity firm and has enhanced security across its platform. At this time DoorDash has not said what type of third-party vendor was involved nor how the information was obtained. It is suggesting that all those affected change their Door Dash passwords.

Colin Bastable, CEO of Lucy Security, said the fact that the passwords were hashed does not necessarily protect anyone.

“Once again, third-party risk exposes consumers’ data to the dark web. Just because the passwords are hashed and salted does not mean that this was an innocuous hack. 4.9 million consumer names, email addresses, phone numbers addresses are available to be exploited multiple times over the next few years.

Erich Kron, KnowBe4’s security awareness advocate, said the
breadth of information exposed sets the stage for these people to be impacted
by a variety of cybercrimmial actions further down the road.

“This particular breach disclosed a significant amount of
information, even though the passwords were hashed and salted. By using
information from this breach, attackers could create a very convincing phishing
email using your name, email address and phone number, along with the last four
digits of the credit card and trick a person into believing it was legitimate.
This is even worse for delivery drivers who have had their drivers’ license
number also compromised,” Kron said.

Cyber360 News

Cyber360 News

Next Post
Russian man pleads guilty to financial firm hacks

Russian man pleads guilty to financial firm hacks

Recent Posts

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

October 6, 2021
Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

October 1, 2021
Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

October 1, 2021

Whats New in Kali Linux?

September 14, 2021

Kali Linux 2019.3 Release (CloudFlare, Kali-status, metapackages, Helper-Scripts & LXD)

September 14, 2021

Kali Linux 2021.3 Release (OpenSSL, Kali-Tools, Kali Live VM Support, Kali NetHunter Smartwatch)

September 14, 2021

Kali Linux 2018.4 Release

September 14, 2021

Kali Linux 1.0.5 and Software Defined Radio

September 14, 2021

Kali Tools Website Launched, 1.0.9 Release

September 14, 2021

Kali Linux Dojo at Black Hat Vegas 2016

September 14, 2021

Category

Site Links

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

About Us

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

© 2019 Cyber360 News - Powered by WebSensePro

No Result
View All Result
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us

© 2019 Cyber360 News - Powered by WebSensePro

Login to your account below

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In