Food delivery giant Doordash said it was hacked on Thursday in a breach that compromised data for nearly 5 million people.

The San Francisco company said in a blog post Thursday that 4.9 million consumers, delivery workers and merchants who joined the platform before April 5, 2018, were affected by the data theft, including names and email addresses.

“Earlier this month, we became aware of unusual activity involving a third-party service provider. We immediately launched an investigation and outside security experts were engaged to assess what occurred,” according to the post.

The hack, which occurred on May 4, 2019, resulted in names, email addresses, delivery addresses, order history, phone numbers as well as passwords being compromised — but not full payment card or bank account information, Doordash said.

The breach comes as the unicorn has been readying a public stock offering and fighting lawsuits alleging its delivery workers have violently attacked customers and restaurant workers.

Doordash said it’s in the process of reaching out to those affected by the hack.