Kickstarter said Saturday that customers’ usernames and passwords were taken in a hacking attack but that no credit-card data were obtained.
The crowdfunding site, which announced the hack in a blog post and in emails to customers, set up an FAQ to address some specific issues. Among them:
While the breach didn’t result in the theft of customers’ financial information, there is still reason for concern. Andrew Dowell wrote in the Journal today:
The crowdfunding site, which announced the hack in a blog post and in emails to customers, set up an FAQ to address some specific issues. Among them:
Does Kickstarter store credit card data?You can read the rest of the FAQ along with Kickstarter’s message to readers here.
Kickstarter does not store full credit card numbers. For pledges to projects outside of the US, we store the last four digits and expiration dates for credit cards. None of this data was in any way accessed.
I use Facebook to log in to Kickstarter. Is my login compromised?
No. As a precaution we reset all Facebook login credentials. Facebook users can simply reconnect when they come to Kickstarter.
While the breach didn’t result in the theft of customers’ financial information, there is still reason for concern. Andrew Dowell wrote in the Journal today:
Breaches like Kickstarter’s that don’t involve financial data still concern security experts. Hackers with email addresses and knowledge of personal interests, such as funding Kickstarter projects, can craft more-sophisticated “phishing” emails aimed at getting recipients to disclose more sensitive information.
No comments:
Post a Comment