Food delivery service company DoorDash says they are investigating a security breach that has affected approximately 4.9 million users.
The company says they discovered unauthorized access from a third party on May 4, 2019.
Those affected include dashers and merchants who joined the platform on or before April 5, 2018. Users who joined after April 5, 2018 are not affected.
"We took immediate steps to block further access by the unauthorized third party and to enhance security across our platform. We are reaching out directly to affected users," says the company.
The company says the breach may have exposed the following:
DoorDash says they have taken additional steps to improve security and are reaching out to those affected directly.
"We are reaching out directly to affected users with specific information about what was accessed. We do not believe that user passwords have been compromised, but out of an abundance of caution, we are encouraging all of those affected to reset their passwords to one that is unique to DoorDash," said the company.
Users are urged to change their password.
Those with questions can call the company at 855-646-4683.
CLICK HERE to learn more.