DoorDash has confirmed a data breach impacting 4.9 million users including customers, delivery workers (Dashers) and merchants. The food delivery company said that the breach happened on May 4 and that customers who joined after April 5, 2019 are not affected. It’s still unclear why it took several months for DoorDash to publicly address the incident.
- Users who joined the platform before April 5, 2018 had their name, email and delivery addresses, order history, phone numbers and hashed and salted passwords stolen.
- Consumers had the last four digits of their payment cards taken, though full numbers and card verification values (CVV) were not taken.
- Both delivery workers and merchants had the last four digits of their bank account numbers stolen.
- Around 100,000 delivery workers had their driver’s license information stolen.
https://twitter.com/zackwhittaker/status/1177317479779110912
Experts Comments
Linkedin Message
@Rob Gurzeev, CEO and Co-Founder, provides expert commentary at @Information Security Buzz.
"Organizations need to expose those shadow risk by mapping and assessing their full attack surface...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Rob Gurzeev, CEO and Co-Founder, provides expert commentary at @Information Security Buzz.
"Organizations need to expose those shadow risk by mapping and assessing their full attack surface...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Dr. Muhammad Malik, Editor-in-Chief, provides expert commentary at @Information Security Buzz.
"Given the changing landscape of the threats and business processes, companies should keep on devising security strategies to minimize risk...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Dr. Muhammad Malik, Editor-in-Chief, provides expert commentary at @Information Security Buzz.
"Given the changing landscape of the threats and business processes, companies should keep on devising security strategies to minimize risk...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"Doordash’s breach highlights why online accounts need to be protected with much stronger forms of authentication...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"Doordash’s breach highlights why online accounts need to be protected with much stronger forms of authentication...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Vinay Sridhara, CTO, provides expert commentary at @Information Security Buzz.
"DoorDash must continuously monitor all assets across hundreds of attack vectors to detect vulnerabilities..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Vinay Sridhara, CTO, provides expert commentary at @Information Security Buzz.
"DoorDash must continuously monitor all assets across hundreds of attack vectors to detect vulnerabilities..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Dr Guy Bunker, CTO, provides expert commentary at @Information Security Buzz.
"For external contractors who have access to internal systems and data, one must again consider who will revoke access and when?..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Dr Guy Bunker, CTO, provides expert commentary at @Information Security Buzz.
"For external contractors who have access to internal systems and data, one must again consider who will revoke access and when?..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Peter Goldstein, CTO and Co-founder, provides expert commentary at @Information Security Buzz.
"Email security solutions that focus on authenticating sender identity are critical to fostering an atmosphere of trust with email communication...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Peter Goldstein, CTO and Co-founder, provides expert commentary at @Information Security Buzz.
"Email security solutions that focus on authenticating sender identity are critical to fostering an atmosphere of trust with email communication...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Stuart Reed, UK Director, provides expert commentary at @Information Security Buzz.
"Data should be treated according to sensitivity...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Stuart Reed, UK Director, provides expert commentary at @Information Security Buzz.
"Data should be treated according to sensitivity...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Richard Cassidy, Senior Director of Security Strategy , provides expert commentary at @Information Security Buzz.
"Not least the importance of truly understanding the nature of what you\'re protecting as a business and whom your protecting it from...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Richard Cassidy, Senior Director of Security Strategy , provides expert commentary at @Information Security Buzz.
"Not least the importance of truly understanding the nature of what you\'re protecting as a business and whom your protecting it from...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Jan Van Vliet, VP and GM EMEA , provides expert commentary at @Information Security Buzz.
"Cyber security programs should ensure that emphasis is placed on the security of the data itself...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Jan Van Vliet, VP and GM EMEA , provides expert commentary at @Information Security Buzz.
"Cyber security programs should ensure that emphasis is placed on the security of the data itself...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Anurag Kahol, CTO , provides expert commentary at @Information Security Buzz.
"Malicious parties can use payment card information and personally identifiable information (PII) to make fraudulent purchases...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Anurag Kahol, CTO , provides expert commentary at @Information Security Buzz.
"Malicious parties can use payment card information and personally identifiable information (PII) to make fraudulent purchases...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Erich Kron, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"Any time there is a lot of correlated data in a breach, the bad guys can use that against people. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Erich Kron, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"Any time there is a lot of correlated data in a breach, the bad guys can use that against people. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Paul Bischoff, Privacy Advocate, provides expert commentary at @Information Security Buzz.
" A food delivery service, for example, might not excel at digital advertising. So it contracts that part of its business out to a third party...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Paul Bischoff, Privacy Advocate, provides expert commentary at @Information Security Buzz.
" A food delivery service, for example, might not excel at digital advertising. So it contracts that part of its business out to a third party...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@George Wrenn, Founder and CEO, provides expert commentary at @Information Security Buzz.
"Technology-driven businesses must become significantly more diligent in their assessment of third-party vendors...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@George Wrenn, Founder and CEO, provides expert commentary at @Information Security Buzz.
"Technology-driven businesses must become significantly more diligent in their assessment of third-party vendors...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Ilia Kolochenko, Founder and CEO, provides expert commentary at @Information Security Buzz.
" Risks affiliated to insecure or careless third parties is an Achilles’ Heel of most modern companies and organizations. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Ilia Kolochenko, Founder and CEO, provides expert commentary at @Information Security Buzz.
" Risks affiliated to insecure or careless third parties is an Achilles’ Heel of most modern companies and organizations. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Erich Kron, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"The fact that this data has been available for so long before people were notified is unfortunate. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Erich Kron, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"The fact that this data has been available for so long before people were notified is unfortunate. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Kevin Gosschalk, CEO, provides expert commentary at @Information Security Buzz.
"As long as there is money to be made in the world of cybercrime, fraudsters will continue to find a way to breach credentials...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Kevin Gosschalk, CEO, provides expert commentary at @Information Security Buzz.
"As long as there is money to be made in the world of cybercrime, fraudsters will continue to find a way to breach credentials...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Colin Bastable, CEO , provides expert commentary at @Information Security Buzz.
"In the race to grab market share, businesses like DoorDash place security too far down the list. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Colin Bastable, CEO , provides expert commentary at @Information Security Buzz.
"In the race to grab market share, businesses like DoorDash place security too far down the list. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Stephan Chenette, Co-Founder and CTO, provides expert commentary at @Information Security Buzz.
"Cybercriminals are continuously looking for gaps in security defenses and overlooked basic security misconfigurations, to turn a quick profit. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Stephan Chenette, Co-Founder and CTO, provides expert commentary at @Information Security Buzz.
"Cybercriminals are continuously looking for gaps in security defenses and overlooked basic security misconfigurations, to turn a quick profit. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Linkedin Message
@Chris DeRamus, VP of Technology Cloud Security Practice, provides expert commentary at @Information Security Buzz.
"Only 100% consistency in implementing best practices, policies and tools can ensure protection against a breach. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Chris DeRamus, VP of Technology Cloud Security Practice, provides expert commentary at @Information Security Buzz.
"Only 100% consistency in implementing best practices, policies and tools can ensure protection against a breach. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Rosemary O'Neill, Director - Customer Delivery , provides expert commentary at @Information Security Buzz.
"We must change the current equation of \"breach = fraud\" by changing how companies think about online identity verification...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments
Facebook Message
@Rosemary O'Neill, Director - Customer Delivery , provides expert commentary at @Information Security Buzz.
"We must change the current equation of \"breach = fraud\" by changing how companies think about online identity verification...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/doordash-data-breach-impacts-4-9m-users-experts-comments