On Thursday, online delivery platform DoorDash announced it had experienced a data breach that could affect 4.9 million customers, delivery executives, and restaurants. An unauthorized third-party accessed the data on May 4, according to a blog post attributed to the company. Anyone who joined the service after April 5, 2018 was not affected.
As a result of the breach, the last digits from affected consumers’ cards, as well as the last four digits of the bank accounts from affected delivery executive and restaurants, were possibly leaked. It’s also possible that information including names, emails, addresses, phone numbers, and more was leaked. It’s also, how do you say, not great news for DoorDash, which over the summer came under fire for tip skimming.