Meal delivery service DoorDash has reported a data breach of about 4.9 million customer, delivery driver, and merchant user accounts. Users who registered after April 5, 2018 should not be affected. DoorDash has also set up a phone help line regarding this data breach that can be reached at 855-646-4683.
Capital One has reported that there was unauthorized account access for about 100 million individuals in the United States and 6 million in Canada. This data included approximately 140,000 Social Security numbers of credit card customers. Capital One will notify these customers according to their FAQ press release.
The Federal Trade Commission (FTC) has released more details about the pending settlement regarding the 2017 Equifax data breach. Consumers will be able to file for a claim with an online tool once the settlement is finalized.
More information is available at www.equifaxbreachsettlement.com.
Update: the FTC is now recommending that consumers affected by this data breach choose the credit monitoring option instead of the payment option, which is expected to be smaller due to the large amount of claims filed.
Quest Diagnostics issued a statement that billing collections service American Medical Collection Agency (AMCA) had potential unauthorized activity on AMCA’s web payment page, which could have compromised the data of about 11.9 million Quest patients. Lab results were not affected by this incident. Quest Diagnostics is continuing their investigation.
Some of the more comprehensive lists of known data breaches include:
- USA Today list of largest data breaches and hacks
- CNN.com – biggest data breaches in history
- Bloomberg.com – worst corporate hacks list
- Wikipedia data breach list
- State of California data breaches list
Identity theft victims can receive advice from these websites:
Stanford Law School’s Center for Internet and Society (CIS) has an interactive map that lists Internet legal developments around the world. More information about this map can be found at the CIS map’s FAQ page.
Security researcher Troy Hunt recently published his findings about a huge store of 773 million email accounts with some password information that had previously been stored at a location available to hackers.
To verify if a specific email address was included in his list of data breaches, enter it at Troy Hunt’s website haveibeenpwned.com. Passwords can be verified separately at haveibeenpwned.com/Passwords.
Google will move the shutdown date of the consumer version of its Google+ (Google Plus) social network from August 2019 to April 2019. Google still plans to support Google+ for enterprise customers.
Update: Google+ will no longer be available for consumer (personal) accounts on April 2, 2019. Google also provided instructions on downloading Google+ data and deleting a Google+ account.
Question-and-answer learning website Quora.com has reported a data breach of its user account data, including user names, email addresses, and encrypted passwords for approximately 100 million Quora users. Quora will notify users affected by the data breach by email.
Quora has more information at its FAQ page for the security incident.