To Customer Support To Customer Support

DoorDash Accounts Hacked in Credential Stuffing Attack

  • 26 September 2018
  • 1 reply
  • 220 views
Jasper_The_Rasper
Rank
Userlevel 7
Badge +54

Company confirms the security incident on its blog

 Sep 26, 2018  ·  By Sergiu Gatlan An increasing number of DoorDash customers reported on Twitter and Reddit that their accounts had been hacked into, passwords have been changed, and crooks placed fraudulent orders on their behalf.
 
After tens if not hundreds of customers saying that attackers were changing their DoorDash e-mails and ordering food using their accounts for the past month, the on-demand restaurant courier service company went to its blog saying that it was all due to a credential stuffing attack.
 
Full Article.

1 reply

P
Rank
Userlevel 4
Shouldn't be that hard for the company to figure out where it started. Send authorities to the farthest back trace of the attack since the food is delivered to an address or pull a setup and either trace email address or have them show up to do the delivery. Then question them. Hopefully all fraudulent activity is refunded.

Reply


Terms & Conditions

© 2004 - Webroot Inc.

We have recently updated our Privacy Policies. We encourage you to read the full terms here.