Digital comics storefront ComiXology has discovered a wide-reaching security breach during a security review and upgrade, and is requiring that all account holders reset their passwords, according to an email send out by the company today. The email says that payment information is safe, since it isn’t stored on ComiXology servers, and notes that passwords are stored in an encrypted form, so those should be safe, too.
The blanket password reset is being called a “precautionary measure” by the ComiXology team, which does still acknowledge that an “unauthorized individual” accessed a database containing ComiXology account holder usernames and emails, in addition the encrypted passwords associated with those accounts. The digital comics seller is also recommending that users modify their passwords on other services, too, if they were using the same or similar ones around the web.
ComiXology says that it has already improved its security following the attack, and intends to continue to do so “on an ongoing basis.” It also includes a warning against the kind of phishing attacks that profess to be emails from ComiXology asking for sensitive account information. ComiXology saw the sale of over 4 billion digital comics pages in 2013, and though it doesn’t share user numbers, there are likely a lot of people affected by the breach.
If you’re a current ComiXology user, go here to reset your password ASAP. We’ve reached out to the company to see if they can provide more info about the security breach, or the measures taken to prevent it from happening in the future, and will update if the team responds with more info.
No comments:
Post a Comment