- DoorDash suffered a breach that exposed user contact data via social engineering
- Victims include customers, merchants and employees; SSNs may have been compromised
- No credit monitoring is offered; phishing risks remain high post-breach
Popular food delivery platform DoorDash has suffered a cyber attack that saw it lose sensitive data about an unknown number of users.
The company has begun sending breach notification emails to affected individuals, saying it discovered the breach on October 25, 2025.
DoorDash said the attackers stole people’s names, phone numbers, email addresses and mailing addresses, but said in a slightly odd comment, “no sensitive information was accessed.”
Customers, traders and employees are affected
The breach happened after one of the employees fell for a social engineering scam and gave the attackers access to the platform.
We don’t know exactly how many people were affected by the breach, but DoorDash said the incident involved customers, merchants and employees.
The notifications appear to have been sent primarily to Canadian users, but US citizens are also suspected to have been affected, as an undated security advisory on the DoorDash site also mentioned Social Security Numbers (SSN) – primarily an American data type.
“We have already taken steps to respond to the incident, including implementing improvements to our security systems, additional training of our employees, bringing in a leading cybersecurity forensics firm to assist in our investigation of the issue, and notifying law enforcement of the ongoing investigation,” the statement read.
There was no mention of identity theft or credit monitoring services being offered to the victims, which is standard practice in these situations.
Even if there was, customers, clients and users should still be wary of incoming email messages and other communications, especially those claiming to be from DoorDash. Chances are cybercriminals will try to use the stolen data to trick victims into installing malware or providing access to social media accounts, banking platforms or even job apps.
Via Bleeping Computer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
