DoorDash, a home delivery service very similar to Glovo, has suffered an attack that resulted in the exposure of customer and delivery driver information. Apparently, this was made possible thanks to an extensive phishing campaign called Oktapus. The criminals obtained the credentials of one of the providers.
The company assures that they acted quickly and as soon as the incident was reported the provider's access was disabled, to contain the incident.
The leak would include names, email addresses, delivery addresses, phone numbers, credit card details… including data of customers and delivery drivers.
It is not the first time that a company of this type suffers this kind of incident, just as happened to Glovo a few weeks ago.
Fountain: EscudoDigital
Image: Flickr