The stolen data included customer names, email addresses, delivery addresses and phone numbers.
More-sensitive information, like full credit card numbers and account passwords, weren’t compromised, the notice said.
The thieves also got away with the names, phone numbers and email addresses of DoorDash delivery workers.
It said it’s also assisting law enforcement officials in their investigation of the broader phishing campaign.
