DoorDash hit by data breach after an employee falls for social engineering scam

Food delivery giant DoorDash confirms a data breach on Oct 25, 2025, where an employee fell for a social engineering scam. User names, emails, and home addresses were stolen.

DoorDash, the popular food delivery company, is once again dealing with a public relations issue following a data breach where an unauthorised person, reportedly, stole key contact details from users, delivery drivers, and merchants.

The company’s internal security team first detected the issue on October 25, 2025. Upon further investigation, the team found that the security lapse happened after one of their employees was tricked in a social engineering scam.

For your information, social engineering is simply a trick where criminals manipulate a person into giving up private information or allowing access to systems, which helps them bypass technical security measures. In this case, the attacker gained access before DoorDash’s response team could stop them.

What Information Was Taken ...