Tuesday, April 30, 2013

Latest cyberattack victim: Reputation.com


They notified me via email:
 
We are reaching out to let you know that Reputation.com recently identified, interrupted and swiftly shut down an external attack on our secure network.  Our network security personnel detected this breach shortly after it began, and took immediate steps to stop the attack before it could be completed.
 
At Reputation.com, transparency and openness are part of our culture.  That’s why, although the extent of the breach and the limited kind of information accessed during this attack did not legally obligate us to provide notice to our users, we nevertheless felt it was important to let you know that this event occurred.   
 
It appears that of all the locations in the world where our affected users reside, only the jurisdiction of North Dakota requires us to disclose information about this incident to its residents.  However, out of an abundance of caution and due to our strong interest in transparency, we are notifying affected users, regardless of location.
 
Following the attack, our engineering and security team immediately conducted an exhaustive investigation, working closely with independent security experts to determine what information may have been accessed.  We are also implementing additional security measures, beyond the high level of security that is already in place, to ensure your continued protection.
 
To give you some assurance, we want to be clear what was NOT accessed:
  • Financial information, such as credit card numbers or bank account information – which we do not store on our systems
  • Social Security Numbers and drivers license numbers, which we do not ask for or require our users to provide (so you likely did not volunteer this information)
  • Your account details, including why you retained our services
  • Communication between you and our team
  • Any details about the services we provided to you
 
The personal information that was accessed included:
  • Names
  • Email and physical addresses
  • In some instances, phone numbers, dates of birth, and occupational information
 
Additionally, a list of highly encrypted (“salted” and “hashed”) user passwords for a small minority of our users was accessed.  Although it was highly unlikely that these passwords could ever be decrypted, we immediately changed the password of every user to prevent any possible unauthorized account access.
 
Based on the type of information accessed, we do not believe it’s likely that you will experience any future issues as a result of this incident.  However, out of an abundance of caution, we are offering free credit monitoring for a year to those affected clients who request it within the next 30 days.
 
Security and your privacy remain our absolute first priority.  Please do not reply to this email.  We have established a confidential assistance line... blah blah blah

No great damage, I reckon...
Show Comments: OR

No comments:

Post a Comment


COMMENTING CHARGES
Per comment rate: $2
Payable by either clicking the BitCoin "tip me" button or the PayPal "donate" button in the sidebar.

WAIT, WHY DO I HAVE TO PAY TO COMMENT?
Because, like the fine publication Tablet, whom I borrowed this concept from, I too am committed to bringing you the best, smartest, most enlightening and entertaining reporting and writing I'm able to provide, all free of charge. I take pride in my loyal readership, and I'm thrilled that you choose to engage with me in a way that is both thoughtful and thought-provoking. But the Internet, for all of its wonders, poses challenges to civilized and constructive discussion, allowing vocal—and, often, anonymous—minorities to drag it down with invective (and worse).

I'm asking people who'd like to post comments on my blog to pay a nominal fee—less a paywall than a gesture of your own commitment to the cause of great conversation. All proceeds go to helping me bring you the provocative and/or entertaining articles that brought you here in the first place.

I NEED TO BE HEARD! BUT I DONT WANT TO PAY.
Readers can still interact with me FREE of charge via Facebook comments and Google+ comments! You can also reach me via Twitter @davelucas

I hope this new largely symbolic measure will help create a more pleasant and cultivated environment for all! Those of you who choose to contribute, thanks for your support.

IMPORTANT:

Your comment will appear after you have made your donation.

All IP addresses are logged.

Your comment will not appear immediately as all messages are vetted before publication.

PS - Any more questions? Check out my Policy & Terms of Use FAQ!

Related Posts Plugin for WordPress, Blogger...
Web Analytics