SAN FRANCISCO — Food delivery service DoorDash announced nearly 5 million customers, workers and merchants could have had their information stolen by hackers after a security breach earlier this year.
An "unauthorized third party" accessed some DoorDash user data on May 4, according to a statement from the company. Only users who joined DoorDash on or before April 5, 2018, are affected, the statement said.
The user data that could have been accessed include names, email addresses, delivery addresses, order history and passwords. For some consumers, just the last four digits of credit cards were accessed.
For some "Dashers" -- workers who pick up and deliver food -- and merchants, the last four digits of their bank account number may have been accessed.
The driver's license numbers of about 100,000 Dashers were accessed, company officials said.
In the statement, DoorDash officials said they are contacting affected users and are encouraging all affected users to reset their passwords. They've also set up a dedicated support line at 855-646-4683.
This security breach comes about a year after some DoorDash users reported being hacked, TechCrunch reported.