Overview
- The company says an unauthorized party accessed some users’ names, phone numbers, email addresses, and physical addresses.
- DoorDash reports no bank or payment card data, government IDs, or other sensitive financial identifiers were taken, and it says there is no indication of fraud or identity theft at this time.
- Those affected may include customers, Dashers, and merchants, but DoorDash has not disclosed how many people were impacted and says notifications were sent where required.
- DoorDash attributes the incident to a social‑engineering attack on an employee and says it cut off access, engaged an external forensic firm, enhanced security controls, expanded staff training, and contacted law enforcement.
- Users can call +1-833-918-8030 in the U.S. and Canada or +1-214-393-3293 internationally, reference code B155060, reach operators Monday–Friday 6 a.m.–8 p.m. PT and weekends 8 a.m.–5 p.m. PT, and stay alert for phishing attempts.