Exploit: Supply Chain Attack
Risk to Business: Severe
DoorDash has confirmed a data breach that has exposed customer information. Employees of the vendor had credentials that were stolen as part of a recent incident at software company Twilio that were then used to access DoorDash’s internal tools. The company said it cut off the third-party vendor’s access to its systems after discovering suspicious activity. DoorDash did not name the third-party vendor but did confirm the attack and that it was related to the Twilio hack.
Individual Risk: Severe
An undisclosed number of customers had their names, email addresses, delivery addresses, phone numbers and partial payment card numbers stolen. For drivers with the company, hackers were able to access names, phone numbers and email address information.
Stress on your Business:
Unfortunately, this kind of exposure is becoming all too common as bad actors strike strategically against service providers.
How Sieve can help:
If you have ever received a data breach notification, it is essential you understand what is at risk and what you can do about it. To learn more about how to protect yourself from becoming a victim of fraud or identity theft contact us at 414.238.2110 or at [email protected] and we will provide you with specific tools that protect you from today’s security risks.
