NEWNow you can listen to Fox News articles!
DoorDash confirmed data leak this exposed personal information to both customers and delivery workers and sellers. The information stolen included names, email addresses, phone numbers and physical addresses. The company said it has no evidence of fraud associated with the hack at this time, but the event remains a concern for everyone using the service.
Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
DoorDash says the employee fell for a social engineering scam that allowed an unauthorized person to gain access to key contact information. (DoorDash)
How the DoorDash hack happened
The company linked the incident to a social engineering attack. The employee fell for the bait, which gave the hackers access to DoorDash's systems. Once the company discovered the violation, it disabled access, launched an investigation, and notified law enforcement. DoorDash also notifies users directly when necessary.
The company confirmed that the incident exposed the names, email addresses, phone numbers and physical addresses of some people on its system. (DoorDash)
Who was affected by the DoorDash hack?
DoorDash said the breach affected many users of its platform. This includes customers, delivery workers and vendors. CyberGuy reached out to DoorDash and a representative provided us with the following statement:
“DoorDash recently discovered and closed cybersecurity incident in which an unauthorized third party gained access and took the basic contact information of certain users whose data was stored by DoorDash. No sensitive information was obtained, such as Social Security numbers or other government-issued identification numbers, driver's license information, or bank or charge card information. Access to information varied by individual and was limited to names, phone numbers, email addresses, and physical addresses. We have implemented enhanced security measures, provided additional employee training, and retained an external cybersecurity firm to support our ongoing investigation. For more information, visit our Help Center.”
LOOKING FOR A CHEAP CHEESE BURGER? 10 American cities that offer the best food
If you receive a warning from a company, take steps to protect your information. If you're using the app but haven't received a notification, you should still follow the security tips below, as exposed contact information could lead to scams long after the breach.
DoorDash says no sensitive information was accessed and investigators found no evidence of fraud or identity theft related to the hack. (DoorDash)
How to Protect Yourself After a DoorDash Hack
Even though payment details remain secure, exposed contact details can still open the door to fraud. You can reduce your risk by taking a few smart steps to keep your information safe online.
1) Watch out for phishing attempts
Fraudsters act quickly after a hack. They often send false alerts it looks like real DoorDash messages. These emails or text messages may state that you need to verify your account or update your payment details. Remove any messages that ask for personal information or ask you to click a link. When in doubt, go straight to the official app rather than trust the message.
2) Use a data removal service
Data brokers collect and resell personal data, which is often used by scammers. The data deletion service removes your information from these sites. This limits your vulnerability and makes it difficult to pursue criminals. This is one of the simplest and most long-term steps you can take to protect your privacy.
IS YOUR PHONE HACKED? HOW TO SAY AND WHAT TO DO
While no service can guarantee complete removal of your data from the internet, a data removal service is indeed a smart choice. They don't come cheap, and neither does your privacy. These services do all the work for you, actively monitoring and systematically removing your personal information from hundreds of websites. This is what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk that scammers will link leaked data to information they can find on the dark web, making it harder for them to target you.
Check out my top data removal services and get a free scan to see if your personal information has already been published online by visiting Cyberguy.com.
Get a free scan to see if your personal information has already been published online: Cyberguy.com.
3) Use strong passwords and a password manager.
More secure passwords give you better protection. Create unique passwords for each account so that one hack can't unlock your digital life. A password manager makes this task easy by generating secure passwords and storing them securely. It also fills them out automatically, so you spend less time typing.
Next, check to see if your email has been compromised in past hacks. Our #1 password manager (see. Cyberguy.com) Pick includes a built-in breach scanner that checks to see if your email address or passwords have been involved in known breaches. If you find a match, immediately change any reused passwords and secure those accounts with new, unique credentials.
Check out the best password managers of 2025, reviewed by experts, at Cyberguy.com.
4) Enable multi-factor authentication.
Multi-factor authentication (MFA) adds a simple barrier that blocks most hacking attempts. When you enable it, you confirm every login with a code or app invitation. This will keep your account secure even if someone finds out your password. Most major apps allow you to enable this setting under Security.
5) Use reliable antivirus protection.
Powerful antivirus software will protect you from malicious links and downloads. It scans files in real time and alerts you if something seems dangerous. This gives you an extra layer of protection against phishing attempts that try to install malware.
The best way to protect yourself from malicious links that install malware and potentially access your personal information is to install powerful antivirus software on all your devices. This protection can also alert you to phishing emails and ransomware, keeping your personal information and digital assets safe.
Get my picks for 2025's top antivirus protection winners for your Windows, Mac, Android, and iOS devices at Cyberguy.com
6) Check your account activity.
It helps to check your DoorDash account for anything unusual. View your order history, saved addresses, and payment methods. If anything is wrong, update your password and contact DoorDash customer support immediately. Quick action can prevent a small problem from becoming a big problem.
Kurt's key takeaways
Breaches like these remind us how quickly cybercriminals can take advantage of a single mistake. DoorDash quickly shut down access and confirmed the damage, but exposed contact information could still pose risks. Be vigilant and use basic safety rules to avoid trouble.
CLICK HERE TO GET THE FOX NEWS APP
What concerns you most about companies storing your personal information, and how would you like them to act in such cases? Let us know by writing to us at Cyberguy.com
Subscribe to my FREE CyberGuy Report
Get my best tech tips, breaking security alerts, and exclusive offers straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright CyberGuy.com 2025. All rights reserved.
