Kickstarter says hackers got customer data (Update)

Feb 16, 2014 by The Associated Press

Online fundraising site Kickstarter says hackers got some of its customer data.

Kickstarter co-founder Yancey Strickler said in a blog post that hackers accessed usernames, email addresses, phone numbers and passwords. The passwords are encrypted, but the company said it's possible for a hacker to guess a weak or obvious password. It recommended that users change their passwords.

Hackers did not get credit card information, said New York-based Kickstarter, but two accounts saw unauthorized activity.

Kickstarter is one of dozens of crowdfunding websites that let people raise money from donors for projects. Kickstarter campaigns have included Zach Braff and Spike Lee movies, a local brewery, arts projects and business startups.

The breach was disclosed Saturday on the Kickstarter blog. The company said it learned about the breach from law enforcement on Wednesday and closed it immediately.

"We're incredibly sorry that this happened," Strickler wrote. "We set a very high bar for how we serve our community, and this incident is frustrating and upsetting. We have since improved our security procedures and systems in numerous ways."

Strickler added that the company is "working closely with law enforcement."

Kickstarter was founded five years ago and has collected $982 million for more than 56,000 projects, according to its website. It says it has collected pledges from more than 5.6 million people.

The breach comes after discount retailer Target Corp. said it believes hackers infiltrated the computers of one of its vendors, and installed malicious software in Target's checkout system for its 1,800 U.S. stores. Experts believe the thieves gained access during the busy holiday season to about 40 million credit and debit card numbers. They also got the personal information—including names, email addresses, phone numbers and home addresses—of as many as 70 million customers.

Explore further: New technology to help users combat mobile malware attacks

not rated yet
add to favorites email to friend print save as pdf

Related Stories

Yahoo email account passwords stolen (Update 2)

Jan 30, 2014

Usernames and passwords of some of Yahoo's email customers have been stolen and used to gather personal information about people those Yahoo mail users have recently corresponded with, the company said Thursday.

Neiman Marcus is latest victim of security breach

Jan 12, 2014

Luxury merchant Neiman Marcus confirmed Saturday that thieves stole some of its customers' payment card information and made unauthorized charges over the holiday season, becoming the second retailer in recent ...

Recommended for you

Does your password pass muster?

Mar 25, 2015

"Create a password" is a prompt familiar to anyone who's tried to buy a book from Amazon or register for a Google account. Equally familiar is that red / yellow / green bar that rates the new password's strength. ...

Beijing behind Internet security violation: group

Mar 25, 2015

China's cyberspace administration is "complicit" in attacks on major Internet companies including Google, an anti-censorship group said Wednesday, calling on firms worldwide to strengthen their defences.

House unveils cyber bill and signals bipartisan compromise

Mar 24, 2015

House intelligence committee leaders unveiled a bipartisan cybersecurity bill Tuesday amid signs of broad agreement on long-sought legislation that would allow private companies to share with the government details of how ...

The ongoing war against cybercrime

Mar 24, 2015

Cybercrime is estimated to cost the global economy upwards of US$400 billion a year, and these costs are expected to continue to rise. ...

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.