Crowdfunding giant Kickstarter has confirmed that it was last week the victim of a hack that compromised some user data.
The breach occurred last Wednesday (February 12th) and saw hackers gain unauthorised access to some customer data including usernames, email addresses, mailing addresses, phone numbers and encrypted passwords.
Fortunately, no credit card information was accessed although the sire is urging users to reset their passwords.
Upon learning [about the hack], we immediately closed the security breach and began strengthening security measures throughout the Kickstarter system,” CEO Yancey Strickler said.
Actual passwords were not revealed, however it is possible for a malicious person with enough computing power to guess and crack an encrypted password, particularly a weak or obvious one.”
We’re incredibly sorry that this happened. We set a very high bar for how we serve our community, and this incident is frustrating and upsetting. We have since improved our security procedures and systems in numerous ways, and we will continue to do so in the weeks and months to come.
We are working closely with law enforcement, and we are doing everything in our power to prevent this from happening again.”