Vudu Acknowledges Security Breach
Customer names, e-mail addresses, mailing addresses, phone numbers, birthdates and encrypted passwords may have been exposed.
Video streaming service Vudu recently acknowledged that hard drives containing customer data were stolen when thieves broke into its offices on March 24.
According to Vudu, the data on the drives included customer names, e-mail addresses, mailing addresses, phone numbers, account activity, birthdates, encrypted passwords, and the last four digits of some credit card numbers. No full credit card numbers were exposed, as the company doesn't store that information.
"We believe it would be difficult to break the password encryption, but we can't rule out that possibility given the circumstances of this theft," the company stated in a FAQ. "Therefore, we have reset all customer passwords."
All customers whose passwords may have been exposed are being offered one year of identity protection services from AllClear ID, starting on April 9, 2013.
Vudu says it's implementing additional measures to protect against physical theft in the future. "We are also increasing the password strength requirements for Vudu passwords in order to ensure a greater degree of protection," the company states.
Anyone who suspects that their account has been accessed fraudulently is advised to contact Vudu at 855-968-8838 or at firstname.lastname@example.org.