DoorDash

What Happened

In August 2022, the food ordering and delivery service DoorDash disclosed a data breach that impacted a portion of their customers. DoorDash attributed the breach to an unnamed "third-party vendor" they stated was the victim of a phishing campaign. The incident exposed 367k unique personal email addresses alongside names, post codes and partial card data, namely the brand, expiry data and last four digits of the card.

Compromised Data

Email addresses

Geographic locations

Names

Partial credit card data

Recommended Actions

Monitor for Suspicious Activity

Watch for unusual login attempts, spam and phishing emails.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

Breach Overview

Affected Accounts:

367.5 thousand
Breach Occurred:

August 2022
Added to HIBP:

7 Jan 2023

Recommended Actions

Change Your Password

If you haven't changed your DoorDash password since 2022, do so immediately.

Enable Two-Factor Authentication

Add an extra layer of security to your account.

Check Other Accounts

If you used the same password elsewhere, change those too.

Monitor for Suspicious Activity

Watch for unusual login attempts or messages from your account.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

DoorDash

What Happened

Compromised Data

Recommended Actions

Monitor for Suspicious Activity

Breach Overview

367.5 thousand

August 2022

7 Jan 2023

Recommended Actions

Change Your Password

Enable Two-Factor Authentication

Check Other Accounts

Monitor for Suspicious Activity

Services

Information