Online reputation management service reputation.com has suffered a security breach from a thus far unknown attacker.
In an email sent out to users the company said that it had detected and shut down the attack but that some basic information had been accessed. This information includes –
- Email and physical addresses
- In some instances, phone numbers, dates of birth, and occupational information
The email from reputation.com stresses that no financial data, i.e. bank account information or credit card numbers, was accessed.
A small number of hashed and salted passwords were also accessed and so the company has been proactive and reset the passwords for all of their users.
“Following the attack, our engineering and security team immediately conducted an exhaustive investigation, working closely with independent security experts to determine what information may have been accessed. We are also implementing additional security measures, beyond the high level of security that is already in place, to ensure your continued protection.”
Whilst users are unlikely to see any adverse affects based upon the information leaked reputation.com have still offered a year of free credit monitoring to any customers who request it within the next thirty days.
Lessons to be learned
- Security breaches on web sites are more common than you may imagine so make sure you use a different password for every online account you have
- Reputation.com are offering free credit monitoring – take advantage of their offer!
- Hashed passwords aren’t as secure as some companies may think