On February 15, 2014, Kickstarter began notifying its users that law enforcement officials informed the company on February 12 that hackers had successfully gained unauthorized access to customer data.
"Upon learning this, we immediately closed the security breach and began strengthening security measures throughout the Kickstarter system," Kickstarter CEO Yancey Strickler wrote in the notification e-mail.
While no credit card information was accessed, user names, e-mail addresses, mailing addresses, phone numbers and encrypted passwords were exposed.
In response, all users are being advised to change their passwords immediately, and to do the same on any other sites where the same passwords were used. "For additional help with password security, we recommend tools like 1Password and LastPass," Strickler wrote.
In a FAQ posted on its Web site, the company added that at this point, there's evidence of unauthorized activity on only two Kickstarter user accounts. Customers with questions are advised to contact the company at firstname.lastname@example.org.
Photo courtesy of Shutterstock.