DoorDash confirmed a data breach that exposed names, email addresses, phone numbers and physical addresses for some customers, dashers and merchants. The company says no highly sensitive data — such as Social Security numbers, driver’s licenses or payment card information — was accessed. The breach stemmed from a social engineering attack on an employee; DoorDash shut off access, notified impacted users, opened a dedicated call center, and referred the case to law enforcement. The company is increasing employee training and security measures to prevent future incidents.
DoorDash Data Breach Exposes Contact Details of Customers, Dashers and Merchants — No SSNs or Payment Data Taken
DoorDash has confirmed a data breach that resulted in the theft of personal contact information for some users, including customers, delivery drivers (dashers) and merchants.
What happened
According to a DoorDash Help Center update published Nov. 13, an unauthorized third party accessed names, email addresses, phone numbers and physical addresses after a targeted social engineering attack on a DoorDash employee. The company says it detected the incident, terminated the unauthorized access, launched an internal investigation and referred the matter to law enforcement.
What data was exposed
DoorDash reports that the accessed information included names, email addresses, phone numbers and postal addresses for some users. The company emphasized that no highly sensitive data was accessed: Social Security numbers, other government-issued ID numbers, driver’s license information, and bank or payment card information were not taken.
Company response
DoorDash says it has directly notified affected users where required and published details about the incident on its website. The company also established a dedicated call center to answer questions and has engaged an external security firm for specialized support. In addition, DoorDash is increasing employee training to better guard against social engineering scams and has implemented security improvements to reduce the risk of a similar incident.
Help and contact information
Anyone with questions can call DoorDash’s dedicated support line (English and French): +1-833-918-8030 (toll-free in the U.S. and Canada) or +1-214-393-3293 for international callers. Callers should reference engagement number B155060. Hours: Monday–Friday 6 a.m.–8 p.m. PT; weekends 8 a.m.–5 p.m. PT.
What you should do
- Be cautious of unsolicited messages asking for personal information or directing you to unfamiliar websites.
- Do not click links or download attachments from suspicious emails or texts.
- Monitor your accounts and statements for unusual activity and consider enabling two-factor authentication where available.
- If you receive a communication you suspect is related to this incident, verify it via DoorDash’s official support channels before responding.
Reporting: Fernando Cervantes Jr.
Help us improve.
