DoorDash customer data hit in phishing attack

Delivery and takeout firm DoorDash has had some of its customer data accessed as the result of a phishing attack, it has confirmed.  In a ...

Delivery and takeout firm DoorDash has had some of its customer data accessed as the result of a phishing attack, it has confirmed. 

In a blog post, the company said it was the latest to be affected by the knock-on effects of a cyberattack that hit Twilio earlier this month.

DoorDash said that when the unknown attackers breached Twilio's endpoints, they stole login credentials that some Twilio employees used to access certain DoorDash tools. Using those credentials, the attackers proceeded to access sensitive data it was holding.

Passwords and payment data safe

The company did not give out the specific number of users affected by the breach asides from saying a “small percentage” of individuals could be impacted, but did confirm what data was accessed.

“For consumers, the information accessed primarily included name, email address, delivery address, and phone number,” the blog reads. “For a smaller set of consumers, basic order information and partial payment card information (i.e., the card type and last four digits of the card number) was also accessed. For Dashers, the information accessed by the unauthorized party primarily included name and phone number or email address.” 

Passwords, full payment card numbers, bank account numbers, Social Security numbers, and Social Insurance numbers, were not accessed, the company confirmed, also adding that it found no evidence of the compromised data being used for fraud or identity theft.

To mitigate the issue, DoorDash blocked Twilio’s access to its systems for the time being. It also said it “further enhanced” its security systems, as well as its third-party vendor’s security systems, without detailing exactly what was done. 

“We have also shared security alerts with other third-party vendors detailing the specific tactics used and reminded employees and third-party vendors to be on alert for any suspicious activity.”

The company also brought in a cybersecurity firm to assist with the ongoing investigation, notified its users, and contacted law enforcement. 



from TechRadar - All the latest technology news https://ift.tt/p4lvrfh
via IFTTT

COMMENTS

BLOGGER
Name

Apps,3857,Business,150,Camera,1155,Earn $$$,2,Gadgets,1740,Games,926,GTA,1,Innovations,2,Mobile,1696,Paid Promotions,4,Promotions,4,Sports,1,Technology,7963,Trailers,796,Travel,37,Trending,3,Trendly News,24428,TrendlyNews,1,Video,5,XIAOMI,13,YouTube - 9to5Google,1,
ltr
item
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews: DoorDash customer data hit in phishing attack
DoorDash customer data hit in phishing attack
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews
http://www.trendlynews.in/2022/08/doordash-customer-data-hit-in-phishing.html
http://www.trendlynews.in/
http://www.trendlynews.in/
http://www.trendlynews.in/2022/08/doordash-customer-data-hit-in-phishing.html
true
3372890392287038985
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy