From PC Mag: The food delivery service DoorDash is reporting a data breach involving the personal information of 4.9 million users, including its delivery drivers.
The exposed data involves names, email addresses, delivery addresses, phone numbers, and hashed passwords to user accounts. For some consumers, the last four digits of their payment cards were also exposed.
"However, full credit card information such as full payment card numbers or a CVV was not accessed," the company said in a Thursday blog post. "The information accessed is not sufficient to make fraudulent charges on your payment card."
Still, perhaps the most sensitive data accessed in the breach was the driver's license numbers for 100,000 delivery workers with DoorDash, which could put them at risk of identity theft. Some workers and merchants also had the last four digits of their bank account numbers exposed.
However, not every DoorDash user was ensnared in the hack. "Users who joined after April 5, 2018 are not affected," the company said. In addition, a portion of users who signed up on or before April 5 had no data taken in the breach.
View: Article @ Source Site
